翻訳と辞書
Words near each other
・ Software rendering
・ Software repository
・ Software requirements
・ Software requirements specification
・ Software review
・ Software rot
・ Software copyright
・ Software copyright in China
・ Software cracking
・ Software craftsmanship
・ Software Creations
・ Software Creations (UK)
・ Software Creations (US)
・ Software crisis
・ Software defect indicator
Software Defined Perimeter
・ Software deployment
・ Software design
・ Software Design and Development
・ Software design description
・ Software Design Engineer in Test
・ Software design pattern
・ Software developer
・ Software development
・ Software development (disambiguation)
・ Software development effort estimation
・ Software development folder
・ Software development kit
・ Software development process
・ Software diagnosis


Dictionary Lists
翻訳と辞書 辞書検索 [ 開発暫定版 ]
スポンサード リンク

Software Defined Perimeter : ウィキペディア英語版
Software Defined Perimeter

Software Defined Perimeter (SDP), also called a "Black Cloud," is an approach to computer security which evolved from the work done at the Defense Information Systems Agency (DISA) under the Global Information Grid (GIG) Black Core Network initiative around 2007. Connectivity in a Software Defined Perimeter is based on a need-to-know model, in which device posture and identity are verified before access to application infrastructure is granted.〔(【引用サイトリンク】publisher=Cloud Security Alliance )〕 Application infrastructure is effectively “black” (a DoD term meaning the infrastructure cannot be detected), without visible DNS information or IP addresses. The inventors of these systems claim that a Software Defined Perimeter mitigates the most common network-based attacks, including: server scanning, denial of service, SQL injection, operating system and application vulnerability exploits, man-in-the-middle, cross-site scripting (XSS), cross-site request forgery (CSRF), pass-the-hash, pass-the-ticket, and other attacks by unauthorized users.
==Background==
The premise of the traditional enterprise network architecture is to create an internal network separated from the outside world by a fixed perimeter that consists of a series of firewall functions that block external users from coming in, but allows internal users to get out. Traditional fixed perimeters help protect internal services from external threats via simple techniques for blocking visibility and accessibility from outside the perimeter to internal applications and infrastructure. But the weaknesses of this traditional fixed perimeter model are becoming ever more problematic because of the popularity of user-managed devices and phishing attacks, providing untrusted access inside the perimeter, and SaaS and IaaS extending the perimeter into the Internet.
Software defined perimeters address these issues by giving application owners the ability to deploy perimeters that retain the traditional model’s value of invisibility and inaccessibility to outsiders, but can be deployed anywhere – on the internet, in the cloud, at a hosting center, on the private corporate network, or across some or all of these locations.〔

抄文引用元・出典: フリー百科事典『 ウィキペディア(Wikipedia)
ウィキペディアで「Software Defined Perimeter」の詳細全文を読む



スポンサード リンク
翻訳と辞書 : 翻訳のためのインターネットリソース

Copyright(C) kotoba.ne.jp 1997-2016. All Rights Reserved.