Saturday, June 4, 2011

Security Audit

Security audit is a new concept, it refers to the professional auditors according to relevant laws and regulations, property owners of the commission and management authorities of computer is authorized, the relevant activities under the network environment, the systematic or behavior and independent inspection validation, and makes the corresponding evaluation.
introduction
Security audit is a new concept, it refers to the professional auditors according to relevant laws and regulations, property owners of the commission and management authorities of computer is authorized, the relevant activities under the network environment, the systematic or behavior and independent inspection validation, and makes the corresponding evaluation.
Including content
Security audit involves four basic elements: control target, security vulnerabilities, control measures and control test. One, the control objectives is to show enterprise according to the specific of computer application, combining the actual formulate unit of security control requirements. Security hole refers to the security of the system weak links, easy to be interference or destroy the place. Control measures is to show enterprise for realizing the safety control target set by security control technology, collocation method and various regulating system. Control test is the enterprise various security control measures and scheduled safety standards to determine the consistency of comparison, presence and the control measures are implemented, whether to prevent leaks whether effective, evaluation of enterprise security measures dependence. Obviously, safety audit as a special auditing items, request auditors must have strong professional technical knowledge and skills.
function
Security audit tracking function is: to help security personnel audit system reliability and safety; Of the system operation to interfere with apparent attempt to timely report to the security console, take timely measures. General in network system to establish the security control testing center, responsible for system safety monitoring and control, processing and audit. All the security service function, with all the hierarchy network audit tracking system relevant. 
Posted by at
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)