[
°ø Áö
] ȨÆäÀÌÁö º¸¾È Ãë¾àÁ¡ ÁÖÀÇ ±Ç°í
2017-03-08
¾È³çÇϽʴϱî. È£½ºÆ®¸ÕÆ®ÀÔ´Ï´Ù.
¸ÕÀú È£½ºÆ®¸ÕÆ®¸¦ ¾Æ²¸ÁÖ½Ã°í »ç¶ûÇØ Áֽô °í°´ ¿©·¯ºÐ²² Áø½ÉÀ¸·Î °¨»çµå¸®¸ç
ȨÆäÀÌÁö º¸¾È Ãë¾àÁ¡ ÁÖÀÇ ±Ç°í°¡ ÀÖ¾î À̸¦ ¾Ë·Áµå¸®°íÀÚ ÇÕ´Ï´Ù.
---------------------------------------------------------------------------
¡à °³¿ä
o ÃÖ±Ù ±¹³» ȨÆäÀÌÁö¸¦ ´ë»óÀ¸·Î ȨÆäÀÌÁö º¯Á¶, DDoS °ø°Ý µî »çÀ̹ö °ø°ÝÀÌ Áö¼ÓÀûÀ¸·Î ¹ß»ýÇÏ°í ÀÖ¾î ÀÌ¿¡ ´ëÇÑ ÁÖÀÇ ±Ç°í
¡à ±Ç°í »çÇ×
o À¥ »çÀÌÆ® °ü¸®Àڴ ȨÆäÀÌÁö¿¡¼ »ç¿ëÇÏ´Â ÄÜÅÙÃ÷°ü¸®½Ã½ºÅÛ(CMS : Contents Management System) µî À¥ ¾îÇø®ÄÉÀ̼Ç
ÃֽŹöÀü ¾÷µ¥ÀÌÆ® ¹× Á¡°Ë ÇÊ¿ä
- °Ô½ÃÆÇ ¿¡µðÅÍ µî ȨÆäÀÌÁö °³¹ß µµ±¸ ÃֽŹöÀü ¾÷µ¥ÀÌÆ® ¶Ç´Â µ¥¸ð ÆäÀÌÁö »èÁ¦
¡Ø µ¥¸ð ÆäÀÌÁö : /fckeditor/editor/filemanager/connectors/asp/connectos.asp µî
- °Ô½ÃÆÇ ¼Ò½ºÄÚµå ³» ÆÄÀÏ ¾÷¡¤´Ù¿î·Îµå ºÎºÐ È®ÀåÀÚ °ËÁõ ¿©ºÎ Á¡°Ë
o ȨÆäÀÌÁö ¹× ¼¹ö Áø´Ü °¡À̵å, À¥ Ãë¾àÁ¡ Á¡°Ë µµ±¸ µîÀ» È°¿ëÇÏ¿© ÀÚü À¥ Ãë¾àÁ¡ Á¡°Ë ±Ç°í
- (°¡À̵å) ȨÆäÀÌÁö Ãë¾àÁ¡ Áø´ÜÁ¦°Å °¡À̵å, À¥ ¼¹ö±¸Ãà º¸¾ÈÁ¡°Ë ¾È³»¼, À¥¾îÇø®ÄÉÀÌ¼Ç º¸¾È ¾È³»¼ [1][2][3]
- (Á¡°Ë µµ±¸) ÈÖ½½(WHISTL), ij½½(CASTLE) ¾È³» [4][5]
- (¿ø°Ý Á¡°Ë ¼ºñ½º) ¿ø°Ý À¥ Ãë¾àÁ¡ Á¡°Ë ¼ºñ½º [6]
- (DDoS »çÀ̹ö ´ëÇǼÒ) [7]
¡à ¿ë¾î Á¤¸®
o ÈÖ½½(WHISTL) : À¥ ¼¹ö ÇØÅ·¿¡ »ç¿ëµÇ´Â À¥¼Ð ÆÄÀÏ ¹× ¾Ç¼ºÄÚµå Àº´Ð »çÀÌÆ®¸¦ ¼¹ö °ü¸®ÀÚµéÀÌ ½±°Ô ŽÁö ÇÒ ¼ö ÀÖµµ·Ï ÇÏ´Â
ÇÁ·Î±×·¥
o ij½½(CASTLE) : À¥ Ãë¾àÁ¡À» ¾Ç¿ëÇÑ °ø°ÝÀ» »çÀü Â÷´ÜÇÒ ¼ö ÀÖ´Â À¥ ¹æȺ® ÇÁ·Î±×·¥
o DDoS »çÀ̹ö ´ëÇÇ¼Ò : ÇÇÇØ À¥»çÀÌÆ®·Î ÇâÇÏ´Â DDoS Æ®·¡ÇÈÀ» ´ëÇǼҷΠ¿ìȸÇÏ¿© ºÐ¼®, Â÷´ÜÇÔÀ¸·Î½á Á¤»óÀûÀ¸·Î ¿î¿µµÉ ¼ö
ÀÖµµ·Ï ÇÏ´Â Áß¼Ò±â¾÷ ¹«·áÁö¿ø ¼ºñ½º
o ÄÜÅÙÃ÷°ü¸®½Ã½ºÅÛ(CMS : Contents Management System) : °Ô½ÃÆÇ µî À¥»çÀÌÆ®¸¦ ±¸¼ºÇÏ°í ÀÖ´Â ´Ù¾çÇÑ ÄÜÅÙÃ÷¸¦
È¿À²ÀûÀ¸·Î °ü¸®ÇÒ ¼ö ÀÖµµ·Ï µµ¿ÍÁÖ´Â ½Ã½ºÅÛ
¡à ±âŸ ¹®ÀÇ»çÇ×
o Çѱ¹ÀÎÅͳÝÁøÈï¿ø ÀÎÅͳÝħÇØ´ëÀÀ¼¾ÅÍ : ±¹¹ø¾øÀÌ 118
[Âü°í»çÀÌÆ®]
[1]
http://www.kisa.or.kr/public/laws/laws3_View.jsp?cPage=6&mode=view&p_No=259&b_No=259&d_No=49&ST=T&SV=
[2]
http://www.kisa.or.kr/public/laws/laws3_View.jsp?cPage=6&mode=view&p_No=259&b_No=259&d_No=46&ST=T&SV=
[3]
http://www.kisa.or.kr/public/laws/laws3_View.jsp?cPage=6&mode=view&p_No=259&b_No=259&d_No=45&ST=T&SV=
[4]
http://www.krcert.or.kr/download/whistlCastle/whistl.do
[5]
http://www.krcert.or.kr/download/whistlCastle/castle.do
[6]
http://www.krcert.or.kr/webprotect/webVulnerability.do
[7]
http://www.krcert.or.kr/webprotect/cyberShelters/cyberShelters.do
---------------------------------------------------------------------------
Áñ°Å¿òÀÌ Àִ ȣ½ºÆà ¼ºñ½º [ È£½ºÆ®¸ÕÆ® ]