| 摘要 |
PURPOSE: A network securing method to which a specific security policy is applicable during a limited condition and a device therefor are provided to define a temporary security policy applied only for a predetermined time or a predetermined frequency, and to automatically delete the security policy after the applied time or frequency. CONSTITUTION: If a manager uses an external device(S410), a network security device is accessed using a security policy service daemon(S420). A security policy is edited using a remote security policy editing program installed in the external device(S421). The edited temporary security policy is stored and registered in a security policy database(S440). If the manager uses the network security device directly, a desired security policy is edited using a security policy editing API(Application Program Interface) module and a security policy editing program(S430), and the edited temporary security policy is stored and registered in the security policy database(S440). If the temporary security policy is applied for a predetermined time, a security policy deletion event is registered in a timer module of a security policy program(S451). A security policy check module filters packets transceived with a network according to the registered security polity, limits access through log-in, or connects with the network to apply the security policy(S452,S461). After a set time or set frequency passes, the timer module or the security policy check module deletes the registered security policy from the database and releases an applied security state(S454,S463).
|
