Just 5 years ago, hackers and viruses were new words. If there's a hacker attack or something new, it's going to be a sizzling news. But now, hackers and viruses seem to be around us, there is always the possibility of outbreaks. Network security has become a hidden danger for each of us, the Chinese Academy of Sciences is now facing such a problem.
Founded in 1950, the Institute of Oceanography is the largest and most comprehensive marine scientific research institution in China, and they have done a lot of pioneering and groundbreaking work in many fields such as marine life, marine ecology and Marine geology. Like many research institutes, the ocean has a great deal of internal and external information exchange, mainly on the Internet. In previous years, the network security problem is not very prominent. But in recent years, the activities of hackers and viruses have become increasingly rampant. The relevant leaders of the Ocean Institute realized that if safety measures were not taken early, inside the intranet is likely to be hacked, especially for the internal exchange of valuable documents, once stolen, the loss will be immeasurable, so they decided to use the way of tendering, to their own network to buy a "door", all hidden dangers are "shut out ”。
From buying "doors" to buying ideas
As we all know, the most secure "door" that is now used is the firewall. The ocean wants to filter suspicious information by adding a firewall between their intranet and the external Internet. Ocean's bidding activities attracted 5 domestic and foreign well-known security solution providers, they can provide the characteristics of the firewall products, the last ocean chose Cisco authorized the core of senior certification agents and security professional agents-Beijing race Wenjian Technology Co., Ltd. After the bidding, the Marine officials revealed that they were prompted to choose Cisco, not only because of Cisco's reputation and their excellent firewall products, but, more importantly, the security concept of the Cisco Safe Blueprint that impressed them. Is the idea really that important? What is the safe blueprint?
Cisco is recognized as "network experts, security experts", because now more than 70% of the world's network is built with Cisco products, in-depth understanding of the network also makes Cisco become the network security market leader. The safe blueprint is the overall security concept that Cisco has put forward. Safe Blueprint Security concept is mainly embodied in three: first, the real guarantee of network security is not a single point of the product, but a complete security system. The implementation of this system is based on the deep modularization analysis of the network, by clarifying the weak links of each module in the network, and then using the strategy of deep defense with low pertinence. The modular analysis method can make the network structure and security deployment at a glance, avoid duplication of construction and omission in the network security. At the same time, this modular analysis method can also ensure the scalability of the network. Secondly, security is a process, not a product. As the network is in a constantly changing process, therefore, network security is also a dynamic, cyclic upgrade process, which determines that the formulation and implementation of network security strategy will be a continuous, dynamic process, rather than simply "put the firewall here, the intrusion detection system there." Third, the security system must cover the entire network, the depth of defense, centralized management and reporting mechanisms are indispensable.