Research And Implementation On Audit Technology Of Telnet Based On Network Proxy

With the development of information technology, the degree of enterprise information is increasing, the enterprise inner network scale is growing and puts forward a higher requirementon information data security and business continuity. Howerver, Enterprise often has no strict requirement on maintenance behavior, it willlead to existence of huge management loop holes and potential risks on the enterprise information system. Finally, it may cause huge economic losses to the enterprises and country. This paper takes "Research and Implementation on Audit Technology of Telnet Based on Network Proxy" as a research subject, makes a study on the audit of the Telnet protocol operation relied on the background of electric power enterprise for the operation and maintenance of security audit demands.The subject sarts from the theoretical analysis, in-depth study of the Telnet protocol, making a detailed analysis about the network virtual terminal, negotiation and synchronization options of the protocol, then analyzing and summarizing its security. On this basis,combined with the study of the proxy server model, it designs the Telnet proxy overall model. Making the NVT analytical sequence analysis to propose a implementation of NVT finite state machine, which applied to the Telnet proxy model, to realize the protocol data analysis, so as to realize the storage and forwarding of protocol data in the agent model. In addition, it proposes a method about the realization of monitoring playback of Telnet maintenance operation, which can have a real-time monitoring, maintenance operations promptly cutting off, and look back at the events afterwards, so as to achieve the purpose of the audit.After verification of instance, the technology can effectively achieve the audit function of the operation of Telnet maintenance operations, and is a better solution to the current Telnet operation and maintenance of enterprise network behavior management’s problems, and can eliminate internal security risks, to improve security of power enterprise information systems.