Izinto Ukujonga Ngalo Mgca Wokugqibela Wokukhusela
Ukhuseleko olumkileyo ngumgaqo owamkelekileyo wenkqubo yekhomputha kunye nokhuseleko lomnatha (jonga kwi-Security Depth). Isiseko esisiseko kukuba kuthatha iindawo ezininzi zokukhusela ukukhusela kwiintlobo ezahlukeneyo zokuhlaselwa kunye nokusongelwa. Akukho kuphela umkhiqizo okanye ubuchule obungakhuseli kuzo zonke iingongelo ezisengozini, ngoko ke zifuna iimveliso ezahlukileyo kwiisongelo ezahlukileyo, kodwa ukuba nemigca ekhuselekileyo iya kuvumela ukuba umkhiqizo othile ubambe izinto ezinokuthi zithintele ukukhusela kwangaphandle.
Kukho ininzi yezicelo kunye nezixhobo ongazisebenzisayo kwiinkalo ezahlukeneyo-software ye-antivirus, umlilo, ii-IDS (Iinkqubo zokuThungathwa kwe-Intrusion) kunye nokunye. Ngamnye unomsebenzi ohlukileyo kwaye ukhusela kwi-set of attacks of different way.
Enye yezobuchwepheshe obutsha yindlela ye-IPS- Intrusion Prevention System. IPS ifana nokuhlanganisa i-IDS kunye ne-firewall. I-IDS eqhelekileyo izakubhalisa okanye ikuqaphelise ukuthungela i-traffic, kodwa impendulo ishiywe kuwe. I-IPS inemigaqo-nkqubo kunye nemithetho yokuba iyafanisa ukuthungelwano kwendlela. Ukuba nayiphi na ityala liphula imithetho kwaye i-IPS inokuqwalaselwa ukuba iphendule kunokumane ikuxwayise. Izimpendulo eziqhelekileyo zinokubamba zonke iitrato ukusuka kwidilesi ye-IP yomthombo okanye ukuvimba i-traffic engenayo kweso sikhundla ukukhusela ngokukhuselekileyo ikhompyutha okanye inethiwekhi.
Kukho iinkqubo zokukhusela ukungena kwi-intanethi (NIPS) kwaye kukho iinkqubo zokukhusela ukungena kwi-intrusion (HIPS). Nangona kungabiza kakhulu ukuphumeza i-HIPS- ingakumbi kwindawo enkulu yezoshishino, ndincoma ukhuseleko olusekelwe kumhlali apho kunokwenzeka khona. Ukuyeka ukunyuka kunye nokusuleleka kumgangatho womsebenzi ngamnye kunokusebenza kakuhle ekunqandeni, okanye ubuncinci obuqulethekileyo, obungozi. Ngaloo nto engqondweni, nolu uluhlu lwezinto oza kukhangela kwisisombululo se-HIPS kwinethiwekhi yakho:
- Awuxhomeki kwiiNyununu: Iimpawu ezisetyenzisiweyo okanye eziziimpawu ezisongelayo-enye yeendlela eziphambili ezisetyenziswe kwiprosoft efana ne-antivirus ne-intrusion detection (IDS) .Ukuwa kwemasayinithi kukuba baphumelele. Isayinwa ayikwazi ukuphuhliswa de emva kokuba usongelo lukhona kwaye unokuhlaselwa ngaphambi kokusayinwa. Isisombululo sakho se-HIPS kufuneka sisebenzise ukufunyanwa kwesiginesha kunye nokufumanisa okusekelwe kwi-anomaly ebeka isiseko saloo nto "eqhelekileyo" yomsebenzi ukhangeleka kumatshini wakho kwaye uya kuphendula nasiphi na isithuthi esingaqhelekanga. Umzekelo, ukuba ikhomputer yakho ayisebenzisi iFTP kwaye ngokukhawuleza ezinye izongelo zizama ukuvula uxhumano lweFTP kwi khomputha yakho, ii-HIPS zizakukubona njengento engasebenzi.
- Isebenza kunye noqwalaselo lwenu : Ezinye izisombululo ze-HIPS zinokuthintela ngokwemiqathango yeenkqubo okanye iinkqubo abanako ukubeka iliso nokukhusela. Kufuneka uzame ukufumana ii-HIPS ezinokukwazi ukuphatha iiphakheji zorhwebo kwi-shelf kunye naluphi na uhlobo lwezicelo eziqhelekileyo ezisetyenziswa ekhaya. Ukuba awusebenzisi izicelo eziqhelekileyo okanye ungayicingi nje le ngxaki ebalulekileyo kwimeko yakho, ubuncinci ukuqinisekisa ukuba isisombululo sakho se-HIPS sikhusela iinkqubo kunye neenkqubo osebenza ngazo.
- Ikuvumela ukuba Udale Iimigaqo : Iingxaki ezininzi ze-HIPS ziza kunye nesicwangciso esilungileyo semigaqo-nkqubo echazwe ngaphambili kunye nabathengisi ngokuqhelekileyo baya kunikezela ngokuhlaziywa okanye ukukhulula imigaqo-nkqubo entsha ukunika impendulo ethile malunga nosongelo okanye ukuhlaselwa. Nangona kunjalo, kubalulekile ukuba unako ukudala imigaqo-nkqubo yakho kwimeko apho unomngcipheko owodwa ukuba umthengisi akayi ku-akhawunti okanye xa usongelo olutsha luqhubekile kwaye ufuna umgaqo-nkqubo ukukhusela inkqubo yakho phambi kokuba umthengisi unethuba lokukhulula ukuhlaziywa. Kufuneka uqinisekise ukuba umveliso oyisebenzisayo awunako kuphela ukukwazi ukwenza imigaqo-nkqubo, kodwa ukudala umgaqo-nkqubo kulula ukuba ukwazi ukuqonda ngaphandle kweeveki zokuqeqeshwa okanye izakhono zobuchule beprogram.
- Ukubonelela ngeCentral Reporting and Administration : Ngethuba sithetha ngokukhuseliswa ngokusekelwe kwindwendwe yamaseva ngamnye okanye izixhobo zokusebenza, izisombululo ze-HIPS kunye ne-NIPS zibiza kakhulu kwaye zingaphandle kommandla womsebenzisi wasekhaya. Ngoko ke, nangona uthetha nge-HIPS mhlawumbi kufuneka uqwalasele ngombono wokuthumela ii-HIPS kumakhulu ama-desktops kunye namaseva kuwo wonke umnatha. Nangona kulungile ukukhuselwa kwinqanaba ledeskithophu, ukulawula ama-cent of individual systems, okanye ukuzama ukudala ingxelo edibeneyo ingaba yinto engenakwenzeka ngaphandle kokunika ingxelo engundoqo kunye nokulawula umsebenzi. Xa ukhetha umkhiqizo, qinisekisa ukuba ingxelo kunye nokulawula ukuvumela ukuba usebenzise imigaqo-nkqubo entsha kubo bonke oomatshini okanye ukudala iingxelo kuzo zonke iitshini ezivela kwindawo enye.
Kukho ezinye izinto ezimbalwa ofuna ukuzenza engqondweni. Okokuqala, i-HIPS kunye ne-NIPS ayilona "i-bullet bullet" yokukhusela. Ziyakongeza ukongeza kwindlela ekhuselekileyo, ekhuselekileyo ekhuselekileyo kubandakanywa nezixhobo zomlilo kunye nezinye izicelo, kodwa akufanele uzame ukutshintsha ubuchwepheshe obukhoyo.
Okwesibini, ukuphunyezwa kokuqala kwesisombululo se-HIPS kunokuba nzima. Ukuqwalasela ukufunyanwa kwe-anomaly ngokukhawuleza kudinga intsebenziswano eninzi "yokubamba isandla" ukukunceda isicelo sichaze oko "yindlela" yesiqhelo kunye nento engekho. Unokufumana ubuninzi beempembelelo ezingamanga okanye iimpazamo eziphosakeleyo xa usebenza ukuseka isiseko saloo nto ichaza "uhambo" oluqhelekileyo lomatshini wakho.
Ekugqibeleni, iinkampani ngokubanzi zizithenga ngokusekelwe kwinto anokuyenza yenkampani. Imigaqo-mboleko yemigangatho ephakamileyo ibonisa ukuba oku kulinganiswa ngokusekelwe ekubuyiselweni kotyalo-mali, okanye kwi-ROI. Ababhali bezimali bafuna ukuqonda ukuba batyala imali-mali kwimveliso entsha okanye iteknoloji, kuza kuthatha ixesha elingakanani ukuba umkhiqizo okanye iteknoloji ihlawule yona.
Ngelishwa, iimveliso zokhuseleko kunye nekhomputha yekhompyutheni ayifani ngokufanayo nale ngumbumba. Ukhuseleko lusebenza kwiminye ye-ROI. Ukuba umkhiqizo wokhuseleko okanye iteknoloji isebenza njengendlela eyenziweyo inethwekhi iya kuhlala ikhuselekile-kodwa ayiyi kuba "inzuzo" yokulinganisa i-ROI evela. Kufuneka ujonge i-reverse nangona ucinge ukuba inkampani ingahle ilahlekelwe njani xa imveliso okanye iteknoloji yayingekho. Ingakanani imali eya kufuneka isetyenziswe kwiinkonzo zokuvuselela, ukufumana idatha, ixesha kunye nezibonelelo zokuzinikezela abasebenzi bezobugcisa ukucoca emva kokuhlaselwa, njl. Ukuba akukho mveliso inokubangela ukuba ilahlekelwe yimali eninzi kunokuba ixabiso lemveliso okanye iteknoloji lizalisekise, mhlawumbi kunengqiqo ukwenza njalo.