The People's Bank of Anhui Province is a provincial branch under the leadership of the People's Bank of China. As a branch system of the central bank, the data in its network is growing rapidly at a geometric level today. Mars told reporters: "Banks, banks and enterprises have hundreds of millions of deposits, withdrawals, transactions, payments and settlements every day. In other words, we will face various processing tasks of massive data and complex data information every day, such as filtering, correlation, evaluation, retrieval, extraction, extraction, inspection and so on. More importantly, most of these huge businesses have to be completed through the network. Take the credit registration system of Anhui People's Bank, which was opened to commercial banks in 2000, as an example. This system, which has at least 70,000 basic credit information and nearly 400,000 credit data of enterprises and institutions, will receive as many as 6.5438+0.8 million inquiries from financial institutions in the province within one year.
In the current network environment where there are many kinds of viruses and new viruses, especially mixed viruses, emerge one after another, the high risk can be imagined. At the same time, a large number of electronic data information assets, such as business data and office documents, which are always open to the outside world in order to ensure the quality of business services provided by PBOC, must also ensure the continuous operation of servers in the bank to ensure uninterrupted access to the outside world, so as to realize the * * * sharing of information resources and system resources throughout the bank and the information transmission among the head office, regional banks and branches. However, how to adapt to the centralized management of large-scale network environment, reduce the vulnerability of bank information systems, and finally build an information security management center that can adapt to the development of banks for a long time has always been a headache.
In fact, it is not difficult to solve the above problems. As long as there is a network access monitoring device, which can analyze the alarm in real time, deeply analyze the traffic of the intranet server network segment, and record the complete log audit so as to obtain evidence afterwards, all problems can be solved. After repeated argumentation, the bank finally chose Neusoft's mesh firewall.
After more than a year's operation, the smooth operation ability of the business system has been recognized by the internal staff of Anhui People's Bank. More importantly, it has successfully reduced the unplanned downtime caused by various reasons to a minimum, and at the same time, it has a strong emergency handling capability beyond the expectations of Anhui People's Bank. Mars told reporters: "Bank data processing has the characteristics of very strong timeliness. For example, the amount of data will be very large during the daily checkout and year-end settlement, so the firewall required to be installed can carry and handle such emergencies. Many firewalls used in the past are precisely the shortcomings in this respect-there is no problem at ordinary times, but when encountering sudden big data, it is easy to be blocked, or it can't be handled, and packet loss or something has a considerable impact on the work of banks. But Neusoft's products have not had any problems so far. "
In addition, according to the advice of professional and technical personnel, the People's Bank of Anhui also moved a server that was directly placed on the intranet and accessible from the outside to the isolation area, so that people from the outside network could only come here to read data, greatly reducing the probability of danger. Mars believes that the frequent occurrence of bank network security accidents is actually closely related to various security risks existing in the bank network itself. "So, network security is actually a systematic and overall management problem. Any loophole in the network will lead to the security problem of the whole network. Therefore, while paying close attention to the front-line management of business and the formulation and implementation of rules and regulations, the banking system should also actively consult professionals and use professional measures such as identification technology, access control, passwords, low radiation, fault tolerance, anti-virus and high-security products to technically block various security loopholes, so that criminals have no chance. "