摘 要
在日益复杂的互联网环境中，公安内部信息网络的建设与管理相关问题日益
凸显。为了解决内部信息网络与外部公用网（Internet 互联网）之间既要保证信
息有限的互通，还要保证内部信息的保密与安全，通过对特警支队内部信息网络
系统建设与管理的研究，制定出相应的管理策略。
本文通过对当今网络现状的分析，结合公安特警支队的业务需求，对公安内
部信息网络的建设和管理策略分为四个部分。一、公安内部信息网络的安全管理。
对网络的安全及安全局域进行定义，并做出划分，对于信息网路安全管理的内容
进行阐述，并揭示网络管理的作用和意义；二、对人员及行为管理制定策略。首
先从制度上加强管理，并建立长效的管理和技术学习机制，通过对使用内部网络
人员的限制，保证内部信息网络人员管理的规范；三、通过对技术管理的策略制
定，建立内部信息网络与外部公众网的信息边界，建立防火墙和 VPN，并对数据进
行加密，完善病毒、蠕虫和木马的防御体系，对网络侦听进行防御；四、建立主
动防御体系。对内部网络和终端计算机进行漏洞扫描，及时升级系统和应用程序，
同时建立网络异常状态的监控体系，保证数据定期备份。
本论文是以通过在特警支队内部搭建的小型局域网络为实验对象，对整个特
警支队内网采取隔离实验，通过加强管理和提高技术防范手段来研究安全防范工
作，对整个内部信息局域网的建设、使用、维护等方面，起到了理论指导作用，
可以作为内部信息网络安全的策略制定的参考资料。
关键词：内部信息网络；安全；技术；管理；策略
The research about security of Special police detachment’s
internal information network
Specialty: MBA
Name: Xiao Wei
Instructor: Huang Guangqiu
ABSTRACT
In an increasingly complex environment of the Internet, within the public security
information network construction and management-related issues are increasingly
apparent. In order to solve the internal information network and the outside public
network (Internet Internet) limited information exchange both between, and a guarantee
of confidentiality of internal information and security, through the SWAT team study on
construction and management of internal information network system, to develop
appropriate management strategies.
This issue analyses on current network status, combined with the business
requirements of public security special police contingent, on construction of public
security information network and management strategy consists of four parts. An
internal information network security management, public security. To define the field
of network security and Security Council and Division, described the contents of the
information network security management, and reveals the role and significance of
network management; Second, personnel and management strategies. First from system,
strengthen management, and establish long-term management and technological
learning mechanisms, through restrictions on use of internal network staff to ensure
internal information network management framework; Third, through to technical
management of the policy, establish an internal information network and the outside
public network information boundaries, establishment of firewall and VPN and
encryption of data, perfecting the defensive system of viruses, worms and Trojans,
listens on the network for Defense; Four, the establishment of active defense system.
Internal network vulnerability scanning the computer and Terminal, upgraded systems
and applications in a timely manner, while establishing a network anomaly monitoring
system, maintain data backups on a regular basis.
This paper is by special police contingent of the internal structures of small local
area networks to experimental subjects, taken against the special police contingent as a
whole intranet isolated experiments, research by strengthening management and
improving technology means security, internal information for the entire construction,
use, maintenance, and other aspects of the LAN, play a role in theory, can be used as a
reference of internal information network security policies.
Keywords: Internal information network; Security; Techniques; management; Policy