Scribd Logo
Upload

Welcome to Scribd!

  • IBM 安全汇报1222

    Uploaded by

    shino910j
    24 views94 pages
    IBM—安全汇报1222

    Original Title

    IBM—安全汇报1222.ppt

    Copyright

    © © All Rights Reserved

    Available Formats

    PPT, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    IBM—安全汇报1222

    Copyright:

    © All Rights Reserved
    Download as PPT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    24 views94 pages

    IBM 安全汇报1222

    Uploaded by

    shino910j
    IBM—安全汇报1222

    Copyright:

    © All Rights Reserved
    Download as PPT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 94

    IBM China Company Ltd

    2004/12
    IBM

    Copyright IBM Corporation 2004


    IBM China Company Ltd.

    Copyright IBM Corporation 2004


    2 Bank of China 2004
    IBM China Company Ltd

    Copyright IBM Corporation 2004


    IBM China Company Ltd.



    OA


    -
    -
    -
    -
    -




    - (SUN SOLARIS/IBM AIX/HP UX /WIN 2000)
    - Oracle/ DB2/ Sql Server / Domino/ Exchange
    - (WebSphere Portal/ BEA WebLogic/ Sun One Portal/ Oracle AS
    Portal/ MS SharePoint)
    - DNS,FTP, VPN

    Copyright IBM Corporation 2004


    4 Bank of China 2004
    IBM China Company Ltd.

    1
    31

    Copyright IBM Corporation 2004


    5 Bank of China 2004
    IBM China Company Ltd.

    2

    - WEB VPN
    IIS, Apache) - CheckPoint VPN
    - DNS - Nortel VPN
    windows DNS, Unix Bind)
    - FTP
    - IBM VPN
    IIS, WU-ftp)
    -
    Domino, Exchange)

    -
    -
    - CISCO
    Solaris, win2000, HP UX, AIX)

    - Oracle - CISCO PIX
    - DB2 - Netscreen
    - Domino
    - CheckPoint
    - SQL Server

    - Websphere Portal
    - BEA Weblogic - Symantec
    - SUN One Portal -
    - Oracle AS Portal -
    - MS Sharepoint

    Copyright IBM Corporation 2004


    6 Bank of China 2004
    IBM China Company Ltd.


    - 5
    IBM

    - 25

    IBM

    IBM
    IBM

    Copyright IBM Corporation 2004


    7 Bank of China 2004
    IBM China Company Ltd

    Copyright IBM Corporation 2004


    IBM China Company Ltd.

    Copyright IBM Corporation 2004


    9 Bank of China 2004
    IBM China Company Ltd.

    Copyright IBM Corporation 2004


    10 Bank of China 2004
    IBM China Company Ltd.


    - - - - -
    - - - - -
    - - - -
    - -
    -VPN
    -
    - -
    - -
    -
    -
    -

    Copyright IBM Corporation 2004


    11 Bank of China 2004
    IBM China Company Ltd.



    Oracle
    VPN
    DB2 Checkpoint
    Domino
    Nortel
    SQL Server
    IBM
    Websphere Portal Sun Solaris
    BEA WebLogic
    Sun One Portal IBM AIX
    Oracle AS Portal CISCO Win 2000
    MS SharePoint
    HP UX

    CISCO PIX
    Netscreen
    Domino
    Exchange Checkpoint
    WEB


    IIS
    Apache
    DNS


    Windows DNS

    UNIX BIND
    (BIND9)
    FTP

    IIS
    Wu-Ftpd

    Copyright IBM Corporation 2004


    12 Bank of China 2004
    IBM China Company Ltd

    Copyright IBM Corporation 2004


    IBM China Company Ltd.

    Copyright IBM Corporation 2004


    14 Bank of China 2004
    IBM China Company Ltd.

    (1)
    /





    - - - - -
    - - - - -
    - - - -
    - -
    -VPN
    -
    - -
    - -
    -
    -
    -

    Copyright IBM Corporation 2004


    15 Bank of China 2004
    IBM China Company Ltd.

    2


    -
    -
    -
    -
    -


    -
    -
    -
    -
    -

    Copyright IBM Corporation 2004


    16 Bank of China 2004
    IBM China Company Ltd.

    3
    19


    -


    /

    -





    Copyright IBM Corporation 2004


    17 Bank of China 2004
    IBM China Company Ltd.

    / 1

    Copyright IBM Corporation 2004


    18 Bank of China 2004
    IBM China Company Ltd.

    / 2



    PDCA

    1 1

    2 2

    3 3

    3 4

    Copyright IBM Corporation 2004


    19 Bank of China 2004
    IBM China Company Ltd.

    3A

    - - - -
    - -VPN - -
    - - - -
    - - -
    -
    -

    - - (, , )
    - PKI/ -

    - -
    - -

    - - Provisioning
    - - -

    Copyright IBM Corporation 2004


    20 Bank of China 2004
    IBM China Company Ltd.

    Internet

    Copyright IBM Corporation 2004


    21 Bank of China 2004
    IBM China Company Ltd.








    (SOC)

    Copyright IBM Corporation 2004


    22 Bank of China 2004
    IBM China Company Ltd.


    ( )
    ( )



    - TELNET HTTP FTP SMTP POP3


    -
    DoS


    -

    Copyright IBM Corporation 2004


    23 Bank of China 2004
    IBM China Company Ltd.

    Internal Zone,
    Admin Zone, Interconnection Zone ISS
    UNIX

    IDS

    Copyright IBM Corporation 2004


    24 Bank of China 2004
    IBM China Company Ltd.




    -
    -
    -

    Copyright IBM Corporation 2004


    25 Bank of China 2004
    IBM China Company Ltd.

    /


    IT










    (


    )


    Copyright IBM Corporation 2004


    26 Bank of China 2004
    IBM China Company Ltd.





    -
    -
    - Internet
    -

    Copyright IBM Corporation 2004


    27 Bank of China 2004
    IBM China Company Ltd.


    - /

    User Provisioning
    -
    -

    Something you
    know
    Something you
    have
    Something you
    are
    Something you do
    -

    SSO

    Copyright IBM Corporation 2004


    28 Bank of China 2004
    IBM China Company Ltd.





    -
    -
    -

    Copyright IBM Corporation 2004


    29 Bank of China 2004
    IBM China Company Ltd.


    - Why?
    - What?
    - How?




    (role)
    (responsibility) (liability)

    Copyright IBM Corporation 2004


    30 Bank of China 2004
    IBM China Company Ltd.


    -
    -
    -
    -
    -

    -
    -
    -

    Copyright IBM Corporation 2004


    31 Bank of China 2004
    IBM China Company Ltd

    Copyright IBM Corporation 2004


    IBM China Company Ltd.


    - /
    -
    -
    -

    -

    -

    -
    -
    Web, FTP, SMTP
    -

    Copyright IBM Corporation 2004


    33 Bank of China 2004
    IBM China Company Ltd.


    -
    /

    -

    -




    -
    -
    -

    Copyright IBM Corporation 2004


    34 Bank of China 2004
    IBM China Company Ltd.


    -






    -



    -

    Web
    FTP

    Copyright IBM Corporation 2004


    35 Bank of China 2004
    IBM China Company Ltd.

    /

    -




    -





    -




    -

    Web FTP

    /

    Copyright IBM Corporation 2004


    36 Bank of China 2004
    IBM China Company Ltd.

    Web FTP HTTP HTTPS FTP


    HTTP FTP

    Web

    Copyright IBM Corporation 2004


    37 Bank of China 2004
    IBM China Company Ltd.

    /
    -
    /

    /
    - /




    - /
    /

    Copyright IBM Corporation 2004


    38 Bank of China 2004
    IBM China Company Ltd.




    -
    -

    -
    -

    -
    -

    -

    Copyright IBM Corporation 2004


    39 Bank of China 2004
    IBM China Company Ltd.


    -
    - /

    - /
    - /
    /
    -
    -
    -
    -
    -
    - /
    -

    - /
    -
    -
    /

    Copyright IBM Corporation 2004


    40 Bank of China 2004
    IBM China Company Ltd.


    -
    -
    -


    -
    -


    -
    -

    Copyright IBM Corporation 2004


    41 Bank of China 2004
    IBM China Company Ltd.


    -

    -




    Copyright IBM Corporation 2004


    42 Bank of China 2004
    IBM China Company Ltd.


    -
    -


    -




    -

    Copyright IBM Corporation 2004


    43 Bank of China 2004
    IBM China Company Ltd

    Copyright IBM Corporation 2004


    IBM China Company Ltd.


    -
    -
    -
    -

    -

    -
    " "
    -

    -

    -

    Copyright IBM Corporation 2004


    45 Bank of China 2004
    IBM China Company Ltd.

    Copyright IBM Corporation 2004


    46 Bank of China 2004
    IBM China Company Ltd.




    1.
    2.
    3.

    Copyright IBM Corporation 2004


    47 Bank of China 2004
    IBM China Company Ltd.





    -
    SQL

    -
    SQL

    - VPN

    Copyright IBM Corporation 2004


    48 Bank of China 2004
    IBM China Company Ltd.




    -
    -

    -


    -

    Copyright IBM Corporation 2004


    49 Bank of China 2004
    IBM China Company Ltd.


    -



    -

    -

    -


    -

    Copyright IBM Corporation 2004


    50 Bank of China 2004
    IBM China Company Ltd.


    -

    -
    - CPU

    -
    -
    -
    -
    -

    -
    -
    -

    Copyright IBM Corporation 2004


    51 Bank of China 2004
    IBM China Company Ltd.


    -



    -


    -


    -
    -


    Copyright IBM Corporation 2004


    52 Bank of China 2004
    IBM China Company Ltd.



    PKI

    Copyright IBM Corporation 2004


    53 Bank of China 2004
    IBM China Company Ltd

    Copyright IBM Corporation 2004


    IBM China Company Ltd.

    Packet Filter
    Proxy
    Circuit Proxy
    Dynamic Packet Filter
    Stateful Inspection
    Adaptive Proxy
    Deep Packet Inspection

    Copyright IBM Corporation 2004


    55 Bank of China 2004
    IBM China Company Ltd.

    NAT





    Copyright IBM Corporation 2004


    56 Bank of China 2004
    IBM China Company Ltd.

    Screening Router
    Dual Homed Gateway
    Screened Host Gateway
    Screened Subnet

    Copyright IBM Corporation 2004


    57 Bank of China 2004
    IBM China Company Ltd.

    Copyright IBM Corporation 2004


    58 Bank of China 2004
    IBM China Company Ltd.

    Copyright IBM Corporation 2004


    59 Bank of China 2004
    IBM China Company Ltd.





    VPN IPsec SSL



    802.1Q

    Copyright IBM Corporation 2004


    60 Bank of China 2004
    IBM China Company Ltd.

    Copyright IBM Corporation 2004


    61 Bank of China 2004
    IBM China Company Ltd.


    IP


    IP



    Copyright IBM Corporation 2004


    62 Bank of China 2004
    IBM China Company Ltd.

    Copyright IBM Corporation 2004


    63 Bank of China 2004
    IBM China Company Ltd.

    Copyright IBM Corporation 2004


    64 Bank of China 2004
    IBM China Company Ltd.

    Copyright IBM Corporation 2004


    65 Bank of China 2004
    IBM China Company Ltd.

    (1)

    isp

    Router

    External DMZ

    Main FW
    External
    Web Server External
    DNS Server

    Internal
    Web Server Internal Desktop
    Internal Email Server
    DNS Server

    Copyright IBM Corporation 2004


    66 Bank of China 2004
    IBM China Company Ltd.

    (2)

    isp

    Router

    External DMZ

    External
    External Main FW
    Web Server DNS Server

    Internal DMZ

    Internal Internal
    Web Server Email Server Internal FW

    Internal
    DNS Server

    Desktop Desktop

    Copyright IBM Corporation 2004


    67 Bank of China 2004
    IBM China Company Ltd.

    Copyright IBM Corporation 2004


    68 Bank of China 2004
    IBM China Company Ltd

    Copyright IBM Corporation 2004


    IBM China Company Ltd.

    Copyright IBM Corporation 2004


    70 Bank of China 2004
    IBM China Company Ltd.


    OA



    MIS
    MIS

    BOSS

    Copyright IBM Corporation 2004


    71 Bank of China 2004
    IBM China Company Ltd.

    Copyright IBM Corporation 2004


    72 Bank of China 2004
    IBM China Company Ltd.

    Copyright IBM Corporation 2004


    73 Bank of China 2004
    IBM China Company Ltd.





    OA OA
    OA

    Copyright IBM Corporation 2004


    74 Bank of China 2004
    IBM China Company Ltd.






    PSTN
    CMNET VPN

    Copyright IBM Corporation 2004


    75 Bank of China 2004
    IBM China Company Ltd.

    FireWall
    NETScreen 204
    Internet Access Zone

    Cisco3662
    DMZ Zone
    Su n S un S un

    IntrusionFirewall
    EN T E R PR ISE E N T E RP RI S E E N T E RP RI S E
    60 00 6000 6000

    SC SC Detection
    Web-mail Reverse connection Zone CMNet GPRS
    Proxy
    WAP&SMS Mail-Relay/Proxy
    Server/anti-virus
    Sun E450 NETScreen 25 Cisco 3662

    Intrusion S un
    E N T ER PR I SE
    60 00

    Detection VPN
    Admin Zone Cisco 7204 IBM 6000
    Interconnection Zone
    Sun Sun Sun
    FireWall
    Sun E N TE R P R I S E
    60 0 0
    &
    Cisco3662
    ISSConsole

    Internet Scanner
    Intrusion Sun
    PSTN
    Detection
    ERP

    BD6816
    Sun Sun User Zone
    Internal SMTP MTA
    Zone FAX SERVER
    Sun E N TE R P R IS E
    6 000 Su n EN T E R P R IS E
    600 0

    ERP ERP
    S un
    EN T E RP R IS E
    6 0 00

    DNS/DHCP SUN
    SC OA HP LC2000 E250
    Training
    SUN E250

    Su n

    Intrusion
    EN TE RP R IS E
    60 00

    SC
    Su n

    SC
    Su n

    Detection SC
    S un

    SC
    Sun

    SC
    S un

    SC
    Su n

    KANWU Server Sun


    OA2 Server CA IE Server Sun
    DB Server Mail Server Sun
    OA Server
    Sun V880 Sun V880 HP LC2000 Sun E4500 Sun E4500 Sun E4500 Sun E4500
    Copyright IBM Corporation 2004
    76 Bank of China 2004
    IBM China Company Ltd.





    CMNet
    BOSS



    CMNet



    DCN



    1
    SOC


    MIS


    /ISP MIS OAOA



    Copyright IBM Corporation 2004
    77 Bank of China 2004
    IBM China Company Ltd.

    Copyright IBM Corporation 2004


    78 Bank of China 2004
    IBM China Company Ltd.

    Copyright IBM Corporation 2004


    79 Bank of China 2004
    IBM China Company Ltd.


    e-learning


    OA




    DMZ
    DMZ

    Copyright IBM Corporation 2004


    80 Bank of China 2004
    IBM China Company Ltd.

    Copyright IBM Corporation 2004


    81 Bank of China 2004
    IBM China Company Ltd.

    Copyright IBM Corporation 2004


    82 Bank of China 2004
    IBM China Company Ltd.

    Copyright IBM Corporation 2004


    83 Bank of China 2004
    IBM China Company Ltd.

    Copyright IBM Corporation 2004


    84 Bank of China 2004
    IBM China Company Ltd.

    Copyright IBM Corporation 2004


    85 Bank of China 2004
    IBM China Company Ltd.


    DMZ

    DMZ
    DMZ
    DMZ

    Copyright IBM Corporation 2004


    86 Bank of China 2004
    IBM China Company Ltd.

    Copyright IBM Corporation 2004


    87 Bank of China 2004
    IBM China Company Ltd.

    Copyright IBM Corporation 2004


    88 Bank of China 2004
    IBM China Company Ltd.

    Copyright IBM Corporation 2004


    89 Bank of China 2004
    IBM China Company Ltd.

    Copyright IBM Corporation 2004


    90 Bank of China 2004
    IBM China Company Ltd.

    Copyright IBM Corporation 2004


    91 Bank of China 2004
    IBM China Company Ltd.

    1 1 1 1 1 5

    2 2 1 2 2 9

    3 2 2 3 3 13

    3 3 3 3 3 15

    Copyright IBM Corporation 2004


    92 Bank of China 2004
    IBM China Company Ltd.

    Copyright IBM Corporation 2004


    93 Bank of China 2004
    IBM China Company Ltd

    Copyright IBM Corporation 2004

    You might also like