摘要 |
Embodiments of the present invention provide a network security monitoring method and system, which relates to the field of communications. The network security monitoring system disclosed in the embodiments of the present invention includes: an access security execution unit, configured to send a user security policy query request carrying a user identifier and/or a network address to a security policy engine unit, acquire a corresponding user security policy from a user security policy query response returned by the security policy engine unit, and execute the user security policy for the user; the security policy engine unit, configured to receive the user security policy query request, extract the user identifier and/or network address from the user security policy query request, determine user identity information corresponding to the extracted user identifier and/or network address, query the corresponding user security policy according to the user identity information, and feed back the queried-out user security policy through the user security policy query response. The embodiments of the present invention further disclose a network security monitoring method. The technical solution of the present application achieves the implementation of a network user's security policy |