When facing network security threats, many enterprises focus on routine protection, mainly adopting measures such as perimeter protection devices, disaster backup, and antivirus protection based on traditional network security concepts, while often overlooking security risks within the internal network. Taking into account enterprise application needs and the current state of network management, the main problems in internal network security include the following aspects:
1. Core data confidentiality: Large amounts of important data such as documents and reports are scattered across internal enterprise servers and employee computers. User behavior must be recorded and audited, and file operations and printing activity must be brought under an effective management system, to prevent all core data from being taken out of the internal information system through the network or mobile storage devices.
2. Mobile PC management: Because mobile PCs are often carried outside, they have the highest chance of being attacked, spreading viruses, and leaking confidential files. Enterprise protection for mobile PCs should extend to every place they may be used.
3. Network behavior management: Network behavior must be effectively managed to prevent malicious viruses and Trojans from spreading in the internal network system, while also blocking unauthorized illegal computers from connecting to the network and stealing important data.
In response to the above problems, the Huatang Internal Network Security Defense System adopts the concept of “full-time behavior control” and the operating model of “policy distribution, unified management,” providing both online and offline policy sets to give enterprise network devices stricter protection.
Online policy
This refers to the policy used when the client can communicate normally with the server. When the client is within the internal network, it is protected by the firewall or other gateways, so its security level is relatively high and it is easier to supervise. At this time, a relatively relaxed policy is usually delivered to the client to meet normal office needs. For example: allowing the use of USB devices, allowing certain software to run, allowing access to certain types of websites, etc.
Offline policy
This refers to the policy used when the client cannot communicate normally with the server. The most common case is when a mobile PC connects to the Internet from another location and is no longer under the control of the enterprise firewall gateway, or when a mobile device is lost and the data faces the risk of loss. At this time, control over the mobile PC should be strengthened to maximize the security of the device and its data. For example: prohibiting the use of USB, optical drives, and other devices, encrypting disk data, not allowing access to untrusted hosts, etc.
Through the “full-time behavior control” of these two policies, online and offline, the three problems mentioned above can be effectively solved.
1. Data confidentiality: The file encryption function of the Huatang Internal Network Security Defense System can create encrypted spaces on hard disks and USB drives, and can restrict unauthenticated USB drives from being recognized by the client or from reading and writing files; files copied to other PCs still remain encrypted; it can also monitor and record printed files. In this way, unauthenticated storage devices cannot copy enterprise data, and data transmitted out through the network is also encrypted, raising data protection to a stricter level.
2. Mobile PC management: When a mobile PC connects to the Internet from another location, the offline policy provides it with the maximum degree of protection. It prohibits access to dangerous links and prohibits the use of USB drives, optical drives, and other devices, cutting off channels for virus intrusion; if the mobile PC is lost, there is no need to worry about others obtaining important data, because it still remains encrypted. If it is necessary to temporarily relax the policy due to work requirements, a temporary management code can be used to grant broader permissions. Both security and flexibility are achieved.
3. Network behavior management: When a mobile PC returns to the enterprise and reconnects to the internal network, if it has been infected with a virus, the distributed firewall built into the Huatang Internal Network Security Defense System will identify and block the attack, preventing infection of other hosts on the LAN. If an unauthorized host attempts to access the LAN, the distributed firewall will also block the connection, allowing communication only between trusted hosts.
In addition, the full-time behavior control of the Huatang Internal Network Security Defense System also includes functions such as software process management, hardware asset management, patch distribution, and log auditing. Changes in client software and hardware can all be identified intuitively, improving work efficiency.
The “full-time behavior control” of the Huatang Internal Network Security Defense System takes computer terminal security as its central starting point, and builds a complete terminal computer security protection system from multiple angles such as “monitoring illegal access,” “prohibiting the movement of confidential information,” “real-time alarms and security auditing,” and “centralized policy distribution.” Through full-time behavior control, it ensures that hosts both inside and outside the LAN receive comprehensive protection, while also strengthening data privacy and providing an effective solution for enterprise internal network security.
1. Core data confidentiality: Large amounts of important data such as documents and reports are scattered across internal enterprise servers and employee computers. User behavior must be recorded and audited, and file operations and printing activity must be brought under an effective management system, to prevent all core data from being taken out of the internal information system through the network or mobile storage devices.
2. Mobile PC management: Because mobile PCs are often carried outside, they have the highest chance of being attacked, spreading viruses, and leaking confidential files. Enterprise protection for mobile PCs should extend to every place they may be used.
3. Network behavior management: Network behavior must be effectively managed to prevent malicious viruses and Trojans from spreading in the internal network system, while also blocking unauthorized illegal computers from connecting to the network and stealing important data.
In response to the above problems, the Huatang Internal Network Security Defense System adopts the concept of “full-time behavior control” and the operating model of “policy distribution, unified management,” providing both online and offline policy sets to give enterprise network devices stricter protection.
Online policy
This refers to the policy used when the client can communicate normally with the server. When the client is within the internal network, it is protected by the firewall or other gateways, so its security level is relatively high and it is easier to supervise. At this time, a relatively relaxed policy is usually delivered to the client to meet normal office needs. For example: allowing the use of USB devices, allowing certain software to run, allowing access to certain types of websites, etc.
Offline policy
This refers to the policy used when the client cannot communicate normally with the server. The most common case is when a mobile PC connects to the Internet from another location and is no longer under the control of the enterprise firewall gateway, or when a mobile device is lost and the data faces the risk of loss. At this time, control over the mobile PC should be strengthened to maximize the security of the device and its data. For example: prohibiting the use of USB, optical drives, and other devices, encrypting disk data, not allowing access to untrusted hosts, etc.
Through the “full-time behavior control” of these two policies, online and offline, the three problems mentioned above can be effectively solved.
1. Data confidentiality: The file encryption function of the Huatang Internal Network Security Defense System can create encrypted spaces on hard disks and USB drives, and can restrict unauthenticated USB drives from being recognized by the client or from reading and writing files; files copied to other PCs still remain encrypted; it can also monitor and record printed files. In this way, unauthenticated storage devices cannot copy enterprise data, and data transmitted out through the network is also encrypted, raising data protection to a stricter level.
2. Mobile PC management: When a mobile PC connects to the Internet from another location, the offline policy provides it with the maximum degree of protection. It prohibits access to dangerous links and prohibits the use of USB drives, optical drives, and other devices, cutting off channels for virus intrusion; if the mobile PC is lost, there is no need to worry about others obtaining important data, because it still remains encrypted. If it is necessary to temporarily relax the policy due to work requirements, a temporary management code can be used to grant broader permissions. Both security and flexibility are achieved.
3. Network behavior management: When a mobile PC returns to the enterprise and reconnects to the internal network, if it has been infected with a virus, the distributed firewall built into the Huatang Internal Network Security Defense System will identify and block the attack, preventing infection of other hosts on the LAN. If an unauthorized host attempts to access the LAN, the distributed firewall will also block the connection, allowing communication only between trusted hosts.
In addition, the full-time behavior control of the Huatang Internal Network Security Defense System also includes functions such as software process management, hardware asset management, patch distribution, and log auditing. Changes in client software and hardware can all be identified intuitively, improving work efficiency.
The “full-time behavior control” of the Huatang Internal Network Security Defense System takes computer terminal security as its central starting point, and builds a complete terminal computer security protection system from multiple angles such as “monitoring illegal access,” “prohibiting the movement of confidential information,” “real-time alarms and security auditing,” and “centralized policy distribution.” Through full-time behavior control, it ensures that hosts both inside and outside the LAN receive comprehensive protection, while also strengthening data privacy and providing an effective solution for enterprise internal network security.