From August 9th to 10th, the Beijing National Convention Center held the 11th ISC 2023 Internet Security Conference. Song Xinchao, Product Director of Huawei's Data Communication Product Line Security Product Field, was invited to the main venue to deliver a keynote speech titled "Huawei Qiankun Security Cloud Services: Difficulties and Solutions for Enterprise Security Operations". At the Security Operations Practice Forum, Wu Huajia, the architect of Huawei's data communication product line security solution, also delivered a keynote speech titled "Reconstructing a Security Verification and Evaluation System with Zero Trust", sharing Huawei's new understanding and practice in network security.
The key challenges faced by domestic enterprises in terms of network security still include the following:
1) Strong confrontation
2) Variant fast
3) Few experts
4) Slow handling
Based on the above challenges, security cloud services have become a new track of security, fundamentally solving the problems of slow response and difficult delivery of security services. At this conference, Huawei has brought a one-stop security solution and officially launched Huawei's three major scenario solutions
Scenario 1: Equal Protection Compliance. This solution is a collaboration between Huawei and 20+local equal protection evaluation partners, committed to providing customers with a one-stop equal protection security solution
Scenario 2: Ransom Protection: Cloud Edge 3D Defense, One click to contain ransomment, with zero data loss
Scenario 3: Security Reinsurance: Provide a full lifecycle attack and defense drill package service for the normalization of attack and defense drills
On the afternoon of the 9th, at the Security Operations Practice Forum, Wu Huajia, the security solution architect of Huawei's data communication product line, also delivered a keynote speech on "Reconstructing a Security Verification and Evaluation System with Zero Trust":
Zero trust is a security concept for building a trust system, shifting from trust based on traditional entity attributes to a trust model for dynamic behavior, including facility trust, user trust, identity trust, and behavior trust. Zero trust "transforms the existing static trust model based on entity authentication and default authorization (either black or white) into a dynamic trust model based on continuous risk assessment and successive authorization. Through dynamic/persistent entity risk assessment, the attack surface is reduced to ensure system security.
The Huawei HiSec zero trust security solution is based on continuous security detection and end-to-end business security. The solution has the following characteristics:
1) Accurate: Continuous verification: Continuous risk assessment of devices, users, and networks, with terminal rating items greater than 50 categories. Based on AI engines, threats are quickly perceived, with a detection rate greater than 96%.
2) Fast: Based on the comprehensive risk assessment results, dynamic authorization is carried out, with tens of thousands of users concurrently implementing second level dynamic permission changes. SSL offloading performance is leading, and end-to-end access latency is less than 150ms, achieving seamless and secure business access.
3) Stable: Global defense, "cloud network security" collaboration, threat tracing at the second level, AI engine has increased threat detection computing power by 5 times compared to the industry, defense rules of 12000+twice the industry, covering known threat detection.
Huawei HiSec zero trust security solution protects the digital transformation of enterprises and jointly protects the security of critical information assets.
Article Resource: https://mp.weixin.qq.com/s/f0suyWVCJAGmXRc5KvhLAA