2010-08-012024-05-18https://scholars.lib.ntu.edu.tw/handle/123456789/698317摘要：教育部為了提供安全與可靠的資訊安全學術網路環境，於學術資訊分享與分析中心(A-ISAC)的架構下成立學術資訊安全維運中心(A-SOC)，負責台灣學術網路(TANet)維運、管控以及惡意程式偵測。 臺灣大學受教育部委託建置台灣學術網路北區學術資訊安全維運中心，負責台北區網中心-臺大、台北區網中心-政大及桃園區網中心網路資安系統之維運與管控。此外，本中心亦擬提供資安教育學程學生實習之用。維運中心將監控臺大校園骨幹與出口之網路，建立校園體系通報與緊急應變處理機制，作為各大專院校資安監控中心之示範點，累積學術單位維運資訊監控中心之知識與經驗，強化學術單位資安控管之能量。教育部所屬各區網中心已通過教育體系資通安全管理規範(ISMS)認證，透過A-SOC的資訊安全與事件流程管理平台，自動產生監控與告警報表，可簡化及落實各區網中心ISMS控管與稽核作業。未來，將整合資訊安全監控中心及僵屍網路(Botnet)偵測與分析之相關研究，成立Botnet通報機制與聯防作業流程，以強化校園防禦Botnet攻擊之能力。 <br> Abstract: To provide a secure and reliable environment for the information security in Taiwan Academic Network (TANet), the Ministry of Education (MOE) established an Academic Security Operation Center (A-SOC) under the infrastructure of "Academic Information Sharing and Analysis Center (A-ISAC)". The A-SOC will take the responsibility to monitor and control information security of TANet. MOE delegate National Taiwan University (NTU) to build up a TANet Northern Academic Security Operation Center (NASOC), which responsible for the security monitoring, reporting and investigations of Taipei Regional Network Center of NTU (TPRC-NTU), Taipei Regional Network Center of National Chengchi University (TPRC-NCCU), and Tao-Yuan Regional Network Center. NASOC will provide students with practical training courses in information security education program. Besides, NASOC also will monitor security events of NTU and establish reporting and emergency handling systems, which will serve as a reference site for other universities to establish their security operation center. The Security Information and Event Management platform of NASOC can automatically generate reports and alerts about servers, network appliances and information security appliances for aforementioned three Regional Centers to support compliance with the Information Security Management System (ISMS) in education system. In the future, we can integrate detection and analysis of Botnet research with NASOC and set up procedures for notification mechanism and joint defenses, to fortify Botnet defense abilities in campus networks.