Keywords campus network security analysis and countermeasures
Colleges and universities are the cradle of the birth of computer network, and also the earliest place to apply network technology. Campus network is one of the important infrastructures of contemporary colleges and universities, and it is an important platform for improving teaching quality, improving management efficiency and strengthening foreign exchanges and cooperation. The security of campus network directly affects the work of the school. In the initial stage of campus network construction, network security problems may not be prominent, but with the deepening of application and the increasing number of users, the data and information on campus network in colleges and universities have increased dramatically, and various security problems have emerged one after another. "Campus network is not only the birthplace of a large number of attacks, but also the easiest target for attackers to break" [1], and the security of campus network has attracted great attention of colleges and universities. This paper analyzes the security problems of university campus network, and discusses the countermeasures to strengthen the security management of university campus network.
1 Security Analysis of University Campus Network
1. 1 Features of the University Campus Network
Compared with other LANs, the characteristics of campus network in colleges and universities lead to serious network security problems and complicated security management. Its characteristics can be summarized as two aspects:
(1) user group characteristics. The users of campus network in colleges and universities are mainly college students. On the one hand, there are a large number of users and a high level of network. With the enrollment expansion of colleges and universities, the number of students in colleges and universities is increasing, and the number of campus network users ranges from thousands to tens of thousands, and they are often concentrated. Learning in colleges and universities is mainly autonomous learning, which determines that college students have enough time to control themselves. Through study, college students have generally mastered some basic computer knowledge and network knowledge, and their computer level is higher than that of ordinary business users. Moreover, they are curious about new network technologies, dare to try, and are usually the most active network users. On the other hand, users' awareness of network security and copyright is generally weak. College students often don't know enough about the serious consequences of network security problems, and some even regard the campus network as their "training ground" and try various attack technologies on the campus network. In addition, due to the lack of funds and copyright awareness, college students use a large number of pirated software and resources on the campus network. The attempt of attack technology and the spread of pirated software not only occupy a lot of network bandwidth, but also bring great hidden dangers to network security.
(2) The characteristics of campus network construction and management. On the one hand, the construction of campus network needs to invest a lot of money, ranging from millions to tens of millions, while the funds of colleges and universities are generally tight. Limited investment is often used to expand the network scale and increase network applications, which can be seen by teachers and students, while the aspects of network security that teachers and students are not easy to see are often ignored or despised. Due to less investment and lack of necessary network security management equipment and software, management and maintenance are difficult. On the other hand, in order to meet the needs of teaching, scientific research, management and students' study and life, colleges and universities have basically established campus networks with gigabit backbone, 100-megabit desktop or even 10-megabit backbone and gigabit desktop. High-bandwidth campus network brings convenience to campus network users, but also greatly increases the difficulty of network management.
1.2 The main network security problems and threats faced by the current university campus network
(1) security vulnerability. User operating system vulnerabilities and application software security vulnerabilities are common in campus networks, which affect the normal use of user systems and the normal operation of the network and pose a serious threat to network security. Once exploited by hackers or viruses, it may even lead to disastrous consequences.
(2) Viruses and attacks. Network viruses occur and spread very fast. Many campus network users fail to install anti-virus software or update the virus database of anti-virus software in time for various reasons, which leads to the proliferation of network viruses, which not only seriously endangers the security of users' computers, but also greatly consumes network resources, causing network congestion and bringing great inconvenience to every user. At the same time, there are more and more attacks from external and internal users, which seriously affects the normal use of campus network.
(3) Abuse of network resources. In the campus network, users abuse network resources seriously. Some users set up proxy servers privately to illegally obtain network services, and some users illegally download or upload them. Some users even surf the Internet constantly every day, and the daily traffic reaches tens of G, which takes up a lot of network bandwidth and affects other applications of the campus network.
(4) spreading bad information. The spread of bad information is very harmful to college students who are forming a world outlook and outlook on life. The information on the internet is mixed, some of which violate human moral standards or laws and regulations. If this information is not filtered and processed, students will have the opportunity to browse unhealthy web pages such as obscenity, gambling and violence in the campus network. In order to ensure the healthy growth and positive progress of college students, measures must be taken to filter and process the campus network information, so that they can contact the bad information on the network as little as possible.
(5) Spam. Spam is very destructive to campus network. It occupies the network bandwidth, causes the mail server congestion, and then reduces the operation efficiency of the whole network. It is also one of the important ways to spread network viruses, attacks and bad information. Although many colleges and universities have established mail servers to provide mail services for campus network users, due to the lack of mail filtering software and related management systems to limit mail forwarding, mail servers have become the target and transit point of spam, greatly increasing the network traffic of campus network, wasting a lot of campus network bandwidth, resulting in the slow sending and receiving speed of campus network users, and even leading to the collapse of mail servers.
(6) Malicious destruction. Malicious destruction mainly refers to the destruction of network equipment and network system. Equipment destruction refers to the destruction of network hardware equipment. At present, the campus network equipment in colleges and universities is numerous, diverse and scattered, which is very difficult to manage. Individual users may intentionally or unintentionally damage them for some purposes. System destruction refers to the use of hacker technology to destroy the campus network system, such as: modifying or deleting the configuration files of network equipment, tampering with the school homepage, etc. The destruction of these two aspects will affect the safe operation of the campus network, lead to the complete or partial paralysis of the campus network, and even lead to network security accidents.
2 to strengthen the campus network security management countermeasures
Campus network security management is a complex system engineering. To improve network security, we must make efforts from all aspects according to the actual situation.
2. 1 Strengthen the construction of network security management system
"Three-point technology and seven-point management", especially in network security. Colleges and universities should formulate and strictly implement effective safety management system according to the actual situation of campus network. Such as: campus network security management system, network backbone management and maintenance system, campus network non-backbone maintenance system, network security management post responsibilities, network operation management system, home page maintenance management system, campus network information release and management system, virus prevention management system, important data backup and management system, etc. In addition, in order to control and reduce the internal hidden dangers of campus network more effectively, colleges and universities must formulate network behavior norms and specific penalties for violating network behavior.
2.2 do a good job in personal safety protection
Physical security protection refers to the protection of computer systems such as network servers, network equipment such as network switching routes, network cables and other hardware entities from natural disasters, physical damage, electromagnetic leakage, operational errors, human interference and wiring attacks by means of radiation protection, screen password, state detection, alarm confirmation and emergency recovery. For example, put important equipment such as firewall, core switch and various important servers in the core computer room for centralized management; Buried, threaded or overhead optical fibers and other communication lines to prevent accidental damage; Core equipment, backbone equipment, access switches and other equipment are implemented to people and strictly managed. Physical security protection is the most basic means to ensure the normal work of campus network system and avoid interference and destruction.
2.3 Strengthen the education and training of users.
Through network security education, users can have a more systematic and comprehensive understanding of the various threats facing the campus network, make clear the harm of these threats to them, enhance their awareness of network security, and make all campus network users care about and attach importance to network security. Through the training of campus network users, let them try their best to ensure the safety of their computers and deal with some simple security problems, thus reducing the occurrence of network security accidents. If you encounter network security problems, you can make records and report them to relevant departments in time.
2.4 improve the technical level of network managers. According to the actual security situation of the campus network, senior network administrators can set access rights and passwords for important resources of the campus network and configure corresponding network security equipment, especially core equipment, so as to effectively ensure the security of the campus network system. Therefore, in order to ensure the safe operation of the campus network, we must cultivate a team of network administrators with a high sense of security management, and improve their vigilance in maintaining network security and their ability to deal with various attacks. Colleges and universities should start from two aspects: first, strengthen the training of existing network management technicians to improve their ability and level to deal with network security problems; The second is to introduce high-level network security management technicians to improve the overall technical level of network management technicians.
2.5 standardize import and export management
In order to meet the needs of management and work, there are many network exits (such as education network and telecommunication network) in the campus network of colleges and universities. To implement the overall security strategy of the campus network, we must first manage multiple exits in a unified way to solve the security problems caused by multiple exits of the campus network, so that the campus network security system can be implemented and provide the most basic guarantee for the security of the campus network, such as isolating different exits, blocking virus ports, and preventing intruders from attacking and applying.
2.6 equipped with network security equipment or system.
In order to reduce attacks and damages from inside and outside the campus network, it is necessary to configure necessary network security equipment in the campus network, such as network intrusion prevention system, webpage tamper-proof system, firewall, network antivirus system, vulnerability scanning system, content filtering system, patch upgrade system and server security monitoring system. By configuring network security equipment, we can control and supervise the campus network, intercept a large number of illegal accesses, filter unhealthy data information in the network, and help network administrators locate quickly when the network fails. Making full use of these network security devices can greatly improve the security level of campus network.
2.7 Establish a unified identity authentication system for the whole school.
Identity authentication system is the foundation of the whole campus network security system, the first barrier of campus network information security, and the reliance to ensure the safe operation of all application systems in campus network. Colleges and universities should establish a unified identity authentication system based on campus network to authenticate campus network users. This can not only prevent illegal users from surfing the Internet, but also uniformly monitor legitimate users' surfing the Internet.
2.8 Establish a more secure e-mail system
At present, some excellent e-mail security systems have high accuracy and low false alarm rate, and the unique policy module can help users manage and maintain e-mail systems easily. The accuracy of some email systems in identifying spam is close to 100%. Colleges and universities should analyze and compare in many aspects, and choose an excellent mail security system to ensure the security of the campus network mail system, so as to change the current situation of spam, mail virus, mail leakage and other security risks in the mail system.
2.9 Make backup and emergency treatment.
For campus network, a complete backup and recovery scheme is urgently needed. Backup not only refers to the backup of important data of campus network, but also refers to the backup of core equipment and lines [3]. For the web server, a webpage tamper-proof system should be configured to prevent the webpage from being changed; The system configuration of the core equipment in the campus network should be backed up so that it can be restored in time when the equipment fails; The core lines in the campus network should be redundant, so that the redundant lines can be enabled immediately when the lines fail, and the operation of the campus network backbone can be ensured. Emergency response is an important part of the overall security of campus network. The campus network management department of colleges and universities should formulate emergency measures and systems related to network security, so as to ensure that when network security problems occur, they should be dealt with according to emergency measures in time and reduce losses.
3 Conclusion
The security management of campus network is a complex system engineering, and there is no once-and-for-all security measure. In the process of campus network construction and management, colleges and universities should analyze the security problems of campus network in time, study methods and formulate measures to ensure the normal, efficient and safe operation of campus network and serve the teaching, management and scientific research of the school.
refer to
[1] Shaguilan. On campus network security control strategy [M], computer knowledge and technology .2007,3.
[2] High ice. On network security measures [M], Journal of Dongbei University of Finance and Economics .2003,4.
Lin Tao. Network security and management [M]. Beijing: Electronic Industry Press. 2005。
[4]www.eol.cn China Education Online.