Umuyoboro wa pakiIbikoresho bitunganya imiyoboro kugirango ibindi bikoresho byo gukurikirana, nkibigenewe kugenzura imikorere nigikorwa bifitanye isano numutekano, birashobora gukora neza. Ibiranga birimo gushungura igihe cyo kumenya urwego rwibyago, paki imitwaro, hamwe nibikoresho bishingiye kubikorwa.
Umutekano wumuyoboroYerekeza ku nshingano zijyanye n'ubwubatsi bw'umutekano mu gicu, umutekano w'umuyoboro, hamwe n'ubwubatsi bwumutekano wa data. Ukurikije ingano yumuryango, hashobora kubaho umunyamuryango umwe ushinzwe buri munsi. Ubundi, umuryango urashobora guhitamo umuyobozi. Ibyo ari byo byose, amashyirahamwe akeneye gusobanura uwashinzwe no kubaha imbaraga zo gukora ubutumwa - gufata ibyemezo bikomeye.
Gusuzuma ingaruka zurusobe ni urutonde rwuzuye rwinzira mugihe ibitero bibi cyangwa hanze bishobora gukoreshwa muguhuza umutungo. Isuzuma ryuzuye ryemerera umuryango usobanura ingaruka no kubigabanya binyuze mu kugenzura umutekano. Izi ngaruka zishobora kubamo:
- Gusobanukirwa bidahagije sisitemu cyangwa inzira
- Sisitemu zigoye gupima urwego rwibyago
- "Godbrid" uburyo bwo guhangana nubucuruzi ningaruka za tekiniki
Gutezimbere ibigereranyo byiza bisaba ubufatanye hagati yacyo nabafatanyabikorwa mubucuruzi kugirango bumve urugero rwibyago. Gukorana no gukora inzira kugirango wumve ishusho yagutse ni ngombwa nkingaruka zanyuma.
Zeru Kwizera Ubwubatsi (ZTA)Ese umuyoboro wumuyoboro wa paradiji werekana ko bamwe mubashyitsi kumuyoboro ari akaga kandi ko hari ingingo nyinshi zo kubona kugirango zirindwe byimazeyo. Kubwibyo, kurinda neza umutungo kumuyoboro aho kuba umuyoboro ubwawo. Nkuko bifitanye isano numukoresha, umukozi ahitamo niba yemeza buri cyifuzo cyo kubona gishingiye kumwirondoro wabigenewe ushingiye ku guhuza ibikorwa bishingiye ku bijyanye no guhuza ibintu bikomoka ku bijyanye no guhuza ibintu bishingiye ku bijyanye no guhuza ibijyanye no guhuza, aho ushinzwe ibitekerezo, ibitekerezo, no kumvikana, nibindi. Nkuko izina risobanura, ZTA ni ubwubatsi, ntabwo ari umusaruro. Ntushobora kuyigura, ariko urashobora kubyuteza imbere kubintu bimwe na bimwe bya tekiniki birimo.
UmuyoboroNibicuruzwa bikuze kandi bizwi cyane bifite urukurikirane rwibintu byagenewe gukumira uburyo bwo kubona porogaramu zumuryango na seriveri. Umuyoboro wa Network utanga guhinduka kumiyoboro yimbere ndetse nigicu. Kugicu, haba amaturo ya berekent, kimwe nuburyo bwoherejwe nabatanga IAAS kugirango bashyire mubikorwa bimwe bimwe.
Umugezi wizeweByahindutse bitewe no kubangamira umurongo wa interineti kurinda abakoresha ibitero bibi bivuye kuri interineti. URL ashungura, kurwanya virusi, gushushanya no kugenzura imbuga za interineti zahujwe na HTTPS, gukumira amakuru (DLP), hamwe nuburyo buke bwibicu byumutekano (casb) ubu birasanzwe.
Kwinjira kureIshingiye kuri VPN kuri VPN, ariko byinshi nibindi byiringiro kumurongo wa zeru (Ztna), bituma abakoresha bagera kuri porogaramu ku giti cyabo hatagaragara imyirondoro ya konti.
Sisitemu yo gukumira (IP)Irinde intege nke zidasanzwe ziterwa no guhuza ibikoresho bya IPS kuri seriveri idakoreshwa kugirango itange kandi ihagarike ibitero. Ubushobozi bwa IP ubu bukunze gushyirwa mubindi bicuruzwa byumutekano, ariko haracyari ibicuruzwa byonyine. IP iratangiye kongera kuzuka nkibicu kavukire igenzura buhoro buhoro irabazana buhoro buhoro.
Kugenzura imiyoboroitanga ibintu bifatika kumiyoboro no kugenzura uburyo bwo kugera kuri Porokireri ishingiye kuri politiki. Politiki irashobora gusobanura uburyo bushingiye ku ruhare rw'umukoresha, kwemeza, cyangwa ibindi bintu.
DNS isukura (isuku izina rya domaine)Ese serivisi yatanzwe mu mucuruzi ikora nk'izina rya domaine y'ishyirahamwe ryo gukumira abakoresha amaherezo (harimo n'abakozi ba kure) kuva ku mbuga zidasubirwaho.
DDoSmigatiation (DDOS Mitimation)kugabanya ingaruka zangiza zo guhakana ibitero bya serivisi kumurongo. Ibicuruzwa bifata uburyo bwinshi bwo kurinda ibikoresho byurusobe imbere ya firewall, aboherejwe imbere yumuyoboro wumuyoboro, hamwe nabari hanze yumuryango, nkimikorere yumutungo uva mu batanga serivisi cyangwa gutanga ibintu.
Gucunga politiki yumutekano (NSPM)Harimo gusesengura no kugenzura kugirango utegure amategeko agenga umutekano wurusobe rumwe, ndetse no guhinduranya imiyoborere, kwipimisha amategeko, gusuzumwa, no kwisuzuma. Igikoresho cya NSPM gishobora gukoresha ikarita yerekana amashusho kugirango yerekane ibikoresho byose hamwe na firewall binjiza amategeko akubiyemo inzira nyinshi zurusobe.
Microsegmentationni tekinike irinda ibitero bimaze kugaragara biteye kuva mu buryo butambitse kugirango ugere ku mutungo w'ingenzi. Ibikoresho bya microsolation kurutonde rwumuyoboro ugwa mubyiciro bitatu:
- Ibikoresho bishingiye kuri Network byoherejwe kumurongo, akenshi bifatanije numuyoboro usobanuwe neza, kurinda umutungo uhujwe numuyoboro.
.
- Gukira Ibikoresho bishingiye ku bakozi binjiza abakozi ku bakira bashaka kwigunga mu rubuga rusigaye; Igisubizo cyakiriye gikora gikora neza kubikorwa bikora, hypervisor ikora, hamwe na seriveri yumubiri.
Umutekano wizewe kuri serivisi (sase)ni urugero rugaragara ruhuza ubushobozi bwumutekano wuzuye, nka SWG, SD-Wan na Ztna, kimwe nubushobozi bwuzuye bwo gushyigikira amahirwe yizewe. Byinshi mu myumvire kuruta urwego, imyumbati igamije gutanga icyitegererezo cyumutekano uhuriweho utanga imikorere mumiyoboro itoroshye, byoroshye, nuburyo buke.
Gutahura urusobe no gusubiza (NDR)Guhora usesengura traffic yinjira kandi bishaje hamwe nibikoresho byo mumodoka kugirango wandike imyitwarire isanzwe, anomalies rero irashobora kumenyekana no kumenyeshwa amashyirahamwe. Ibi bikoresho bihuza imashini (ML), Heuristis, isesengura, no gutahura bishingiye ku mategeko.
Dns kwagura umutekanoAs-ons kuri pns protocole kandi yagenewe kugenzura DNS ibisubizo. Inyungu z'umutekano za DNSC zisaba gusinya amakuru ya DNS yemewe, inzira yo gutunganya.
Firewall nka serivisi (FWAAS)ni ikoranabuhanga rishya rifitanye isano rya hafi nigicu. Itandukaniro riri mubwubatsi, aho FWAAS yiruka muri VPN iri hagati yimpera nibikoresho kumpera yurusobe, kimwe numutekano mumuriro mu gicu. Irashobora kandi guhuza abakoresha impera kuri serivisi zaho binyuze muri VPN. FWAAs kuri ubu ikunze kugaragara cyane kuruta SWGS.
Igihe cya nyuma: Werurwe-23-2022
