Open Policy Network

前沿·热点Research Hot/Frontiers特色专题信息资源Specialized Science Information Resources 网络学术资源Internet Academic Resources学科/专题导航Subject Navigation网络信息Web information网络信息系统Web-based Information Systems学术信息Academic Information统一/跨库检索Unified Search数字资源长期保存Digital Preservation情报计量学Informetrics数字资源评价Digital Resources Evaluation重要度Importance Scale知识组织Knowledge Organization知识管理Knowledge Management知识处理Knowledge Processing知识共享Knowledge Sharing数字图书馆Digital Library信息素养Information Literacy信息意识Information Consciousness信息知识Information knowledge信息能力Information ability信息道德Information moral信息高速公路计划National Information Infrastructure(NII)图书馆管理Library Management图书馆运营Library Operations开放存取Open Access知识产权Intellectual property rights学术交流Scholarly Communication图书馆立法Library Legislation虚拟参考咨询Virtual Reference数字参考文献Digital Reference学科馆员Subject Librarians个性化服务Personalized Service图书馆射频应用Radio Frequency Identifica Applications(RFID)语义网Semantic Web本体论Ontology主题词表/叙词表Thesaurus分类法Classification数字战略Digital Strategy馆藏政策Collection policy竞争情报Competitive Intelligence读者隐私Reader Privacy高校图书馆University Library数字阅读Digital Reading图像信息Image Information档案网站Archives website数字档案Digital Archive信息集成Information Integration社会网络分析Social Network Analysis网络图书馆Network Library整合性图书馆系统Integrated Library System图书馆联盟Library consortia复合图书馆Hybrid Library图书漂流Bookcrossing链接分析Link analysis信息伦理Information Ethics信息检索Information Retrieval信息安全Information Security信息构建Information Architecture捐赠政策Donation Policy图书馆学Library science图书Books期刊Journals/Periodicals报纸Newspapers百科全书Encyclopedia信息资源Information resources知识Knowledge道德规范ethics图书馆服务library service交叉学科interdisciplinary science美国图书馆运动American Library Movement图书馆学学术课程Academic courses in library science 采集管理Collection management信息系统技术Information systems and technology编目分类Cataloging and Classification保藏Preservation参考咨询Reference统计管理Statistics and management数据库管理Database management情报建设Information architecture知识管理Knowledge Management图书馆学分支学科Subdisciplines in library science人类情报行为Human Information Behaviors知识组织Knowledge Organization数字图书馆Digital libraries采集开发Collection development个人信息管理Personal information management(PIM)保存Preservation公共参考咨询Public reference and other services学术交流Scholarly communication信息计量学informetrics科学计量学scientometrics图书馆职位类型Types of library science professionals图书管理员Librarian档案保管员Archivist编目员Cataloger图书馆馆长Curator编索引员Indexers文摘员Abstractors研究员Researchers信息设计师Information architect信息代理商Information broker元数据设计师Metadata Architects元数据经理Metadata Managers保护员Conservators图书馆相关刊物Current issues in LIS图书馆员教育Education for librarianshipInformation policy信息交流技术Information communication technologies (ICT's) Information Society阅览公平Equity of AccessSustainability and ICT's儿童互联网保护法规Children's Internet Protection Act审查制度Censorship信息爆炸Information explosion信息扫盲Information literacy政府信息Government Information复制权Copyright知识产权Intellectual property rights知识自由Intellectual freedom数字分水岭Digital divide开架阅览Open accessPatriot Act公共借阅权Public lending rightSerials crisisCurrent digital/scanning technologies远程存取Remote access数字图书馆Digital libraries信息检索系统information retrieval system电子信息系统Electronic Information System数字格式digital formats数字参考文献Digital Reference计算机获取accessible by computers电子图书馆electronic library电子书eBooks虚拟图书馆virtual library有声读物audiobooks原生数字born-digital数字化digitizing物理收藏physical collections数字收藏digital collections美国记忆American Memory数字档案Internet Archive电子出版ePrint电子书目ibiblio珀尔修斯项目Project Perseus古藤堡项目Project Gutenbergsearch engines元数据Metadata牛津文本档案馆Oxford Text Archive光学符号识别optical character recognition深度链接资源deep web resources/invisible web搜索引擎蜘蛛search engine crawlersOAI-PMH协议Open Archives Initiative Protocol for Metadata Harvesting (OAI-PMH) Z39.50协议Z39.50网络计量学Webmetrics情报学（信息学）Information science/Informatics迭代过程iterative design processes美国医学图书馆National Library of MedicineDialogCompuserve特殊利益团体Special interest groupsPaul OtletHenri La Fontaine文献计量学Bibliometrics影响因子Journal Impact Factor重要度Importance Scale网页Rank值PageRank数据建模Data modeling数据模型理论data model theory数据模型实例data model instance数据库模型database model非结构化数据unstructured data文档管理Document management电子档案electronic documents电子图像electronic images群件Groupware社交软件Social softwareonline dating services社交网Social networksFriendster计算机支持协作computer-supported collaboration人机交互Human-computer interactionMan-machine interaction (MMI)Computer-human interaction (CHI)用户界面User interface情报建设Information architecture结构化信息structuring information用户体验设计user experience design信息系统设计information system design易用性usability信息伦理Information ethics隐私Privacy信息生命周期life-cycle of information所有权ownership安全security获取access公众community信息检索Information retrieval信息过载information overload单机数据库stand-alone databases超文本数据库hypertextually-networked databases数据检索data retrieval文档检索document retrieval文本检索text retrieval信息社会Information society知识经济knowledge economy后工业化社会post-industrial society知识社会knowledge society网络社会network society知识管理Knowledge management知识工程Knowledge engineering个人信息管理Personal Information Management语义网Semantic web网页内容web content自然语言natural language软件代理software agentsTim Berners-Lee资源描述框架Resource Description Framework (RDF)数据交换格式data interchange formats网页本体语言Web Ontology Language (OWL)用户为中心设计User-centered design可扩展标记语言XMLW3C标记语言markup language标准标记语言Standard Generalized Markup Language (SGML) RSSMathMLGraphMLXHTML可升级向量制图法Scalable Vector GraphicsMusicXML。

HighlightsSee• Discover devices the instantthey connect to your networkwithout requiring agents• Profile and classify devices,users, applications andoperating systems• Continuously monitormanaged devices, includingcorporate, BYOD and IoTendpointsControl• Allow, deny or limit networkaccess based on deviceposture and security policies• Assess and remediatemalicious or high-riskendpoints as determined byyour SIEM product• Improve compliance withindustry mandates andregulationsOrchestrate• Receive contextualinformation from your SIEMproduct and pro-actively takeappropriate action• Automate common workflows,IT tasks and securityprocesses across systems• Leverage the integrationbetween ForeScout and yourSIEM product to provide real-time view of threats across theenterprise SIEM Integration ModuleImprove real-time visibility over managed and unmanaged devices while automating network access control and threat responseForeScout Integration with SIEMsForeScout CounterACT is a network security appliance that provides IT organizations with the unique ability to see devices, including non-traditional devices, the instantthey connect to the network. CounterACT provides policy-based control of these devices and works with ForeScout ControlFabric™ Architecture to orchestrate information sharing and automate operation among disparate security and IT management tools.The combination of using ForeScout CounterACT™ and a SIEM can result a significant increase in situational awareness and proactive risk reduction. Where most SIEM solutions offer situational awareness primarily through the collection of periodic log entries from many different products, they typically do not provide in-depth “real-time” endpoint data visibility. SIEMs are only as good as the information that is fed into them, and if the SIEM is not aware of all the network endpoints on a continuous basis, thenit is not able to produce an accurate security snapshot of your network. This “gap” in endpoint visibility exists in SIEMs without CounterACT. CounterACT discovers network endpoints, and feeds that data into the SIEM, closing the endpoint visibility gap in your situational awareness.By itself, a SIEM system doesn’t have any enforcement capabilities. Some SIEM systems are able to send commands to ForeScout CounterACT to automatically respond to endpoint security issues. For example: update the operating system, disable USB devices, or quarantine the endpoints.The ChallengesVisibility. Any serious attempt to manage security risk must start with knowledge of who and what is on your network, including visibility to whether the devices on your network are compliant with your security standards. Most organizations are unaware of a significant percentage of the endpoints on their network because they are either not managed (BYOD, guest and IoT), have disabled or broken agents, or aren’t detected by periodic scans (transient devices). As such, you are unaware of the attack surface on these devices. According to industry experts, a vast majority of successful attacks exploit well-known vulnerabilities and security gaps on endpoints connected to your network. Threat Detection. T oday’s cyber attacks are more sophisticated than ever. Multi-vectored, stealthy and targeted threats easily evade traditional security defenses such as firewalls, intrusion prevention systems, anti-virus platforms, and secure web and email gateways. Originating from highly motivated and well-funded threat actors and nation states, these attacks are focused on acquiring sensitive personal information, intellectual property or insider information. As the attackers have gained the upper hand, organizations are being compromised at an accelerating rate. In order to effectively detect and block these sophisticated threats, new security controls that do not rely on signatures are needed.Response Automation. The velocity and evasiveness of today’s targeted attacks, coupled with increasing network complexity, mobility and BYOD, are creating a perfect storm for any incident response program. Without an automated system to monitor, install, update and reactivate security agents on managed systems, valuable time islost performing these tasks manually. Without the ability to apply security controls to unmanaged endpoints (BYOD, guest and IoT), you are increasing your attack surface and putting your infrastructure at risk. And without a system to automatically and quickly respond to attacks and security breaches, you are leaving the window open for cyber threats to propagate within your network and exfiltrate data.How it Works When CounterACT discovers infected endpoints, it can receive instructions from the SIEM and automatically take policy-based mitigation actions to contain and respond to the threat. Various actions can be performed depending on the severity or priority of the threat, such as quarantine endpoints, initiate direct remediation, share real-time context with other incident response systems, initiate a scan by another third party product, or notify the end user via email or SMS.ForeScout T echnologies, Inc. 900 E. Hamilton Avenue #300 Campbell, CA 95008 USA Toll-Free (US) 1-866-377-8771 Tel (Intl) +1-408-213-3191 Support 1-708-237-6591 Fax 1-408-371-2284Learn more at Copyright © 2016. All rights reserved. ForeScout T echnologies, Inc. is a privately held Delaware corporation. ForeScout, the ForeScout logo, ControlFabric, CounterACT Edge, ActiveResponse and CounterACT are trademarks or registered trademarks of ForeScout. Other names mentioned may be trademarks of their respective owners. Version 3_16Device connects to thenetwork.CounterACT informs SIEMsystem of device status.CounterACT receivesinstruction from SIEMassessment of device based on events and logs collected.CounterACT allows or deniesaccess based on compliance assessment.1234Supported SIEMs SIEMs that are supported by the ForeScout SIEM Integration Modules are:• ArcSight • IBM QRadar • Any SIEM that supports configurable messages in CEF, LEEF or plain Syslog Note that different SIEM products have different capabilities in terms of correlating the data provided by CounterACT with data that it obtains from other sources. Also, SIEM products vary in their ability to send triggers to CounterACT; some SIEM products provide both manual and automated ways to trigger CounterACT to take action on an endpoint. For a more complete description of the features available with each specific SIEM product, talk with your SIEM vendor or read the joint solution briefs at /solutions/siem . For details on our licensing policy, see /licensing .1Connect Allow Redirect Scan &Assess 234Figure 1: ForeScout CounterACT and your SIEM system work in concert to assess and manage devices as they access the network.。

1. 概述BigFix 企业管理套件是BigFix 公司研发的业界领先的企业级系统安全配置管理软件——可以为不同规模的企业提供可升级的，灵活的，强大的安全平台和分布式处理模型，实现统一的企业级系统管理、配置管理和安全管理，从根本上改变企业计算机网络的管理模式，降低IT管理成本。

BigFix定位于：Ø为企业计算机类资产提供全面实时的可视化安全和配置管理。

Ø通过提高基础平台的可靠性、可视性和可控性，在降低运行费用的同时提供更稳定的服务。

Ø满足补丁管理和安全配置的服务等级要求。

无论计算机系统何时何地，以何种方式接入网络，都可以通过BigFix 企业管理套件实现全面、快速、高效、安全，可控的管理，全面提升企业IT治理水平。

目前我们使用的是BES6.0.8.5中文版本。

2. 操作方法：2.1. 安装安装Bigfix包括服务器安装、控制台安装和客户端安装。

运行BES中文版安装文件，解压缩后可在C:\BESInstallers目录下生成服务器、控制台和客户端的安装程序包。

可将这些安装文件包分别拷贝到需要安装的计算机上，然后运行安装程序，完成服务器、控制台和客户端的安装。

2.1.1. BESServer的安装运行Bigfix安装程序。

对于测试使用，可选择评估版（可管理30各客户端，30天有效期）进行安装：选择要安装的站点：选择服务器IP地址和端口号：创建管理员帐号：选择证书文件的存放位置：设置完成后，开始安装BES组件：选择安装BESServer开始安装：如果SQLServer数据库安装在本机上，选择本地数据库。

初始化数据库需要验证管理员密码，选择前面添加的管理员证书和秘密：根据提示进行操作，安装完成后，继续完成Console和Client的安装。

对于Bigfix运行网络和Internet隔离的情况，需要使用Bigfix公司提供的工具MakeMirrorArchive.exe来完成所有订阅的Fixlet的内容。

一、名词解释（4分，16分）英文两个：1.policy science:multidisciplinary,problem-solving,explicitly normative.2.Policy analysis: the disciplined application of intellect to publicproblems.3.Policy cycle:”stage heuristic”,is a political process through which mostpublic policies pass over the course of their lifetime. Is often viewed as a “vonveyor belt”.4.Kuhn’s Scientific Revolution:As the natural sciences progressed,theyamassed(积累，收集) a body of ever-changing theory.Scientific advances were not based on the accumulation of knowledge and facts,but rather on a dominant paradigm used in any specific period to explain the phenomena under study.Rather than refuting previous theories,each paradigm would build upon the body of relevant knowledge and theories.Once a paradigm was accepted by consensus among current scholars,it would last as long as it remained useful.Ultimately it would be displaced by a more relevant and useful paradigm,this process of replacement was Kuhn’s Specific Revolution.5.Policy universe:Afundamental unit containing all possibleinternational state,social actors and institutions directly or indirectly affecting a specific policy area.6.Policy subsystem:A space where relevant actors discuss policy issuesand persuade and bargain in pursuit of their interests.7.Counteracting:growth in the size,scope and complexity ofgovernment functions over the years prevents generalist politicians from controlling.8.Prime mover(发起者，原动力) in the policy respone:problemstructuring is a central guidance system or steering mechanism that affects the success of all subsequent phases of policy analysis…policy analysts…fail more often because they solve the wrong problem than because they get the wrong solutions to the right problem.9.Problem:substantial discrepancy between what is and what shouldbe.10.P roblem Recognition:According to Kingdon 1995,problem recognitionis often stimulated by widely agreed-upon indicators and routine monitoring that turns up discrepancies or patterns that hint that something is amiss(出了差错的).11.P olicy images:a mixture of empirical information and emotiveappeals that explain the issue and justify the public policy respone. 12.A ttention Cycle:explain how policy problems evolve on the politicalagenda by Downs.Public attention rarely remains focused to any one issue.13.P unctuated Equilibrium（间断平衡）:convey a process thatsimultaneously combines ong stable periods of policy consensus followed by bursts of change around new issues and new policyimages.14.I ncrementalism（渐进主义）:seem to describe most budgetarydecision-making in Western democracies,less useful when encounter some considerable shock:a war,crisis.15.P olicy design:the process of organizing and delivering outcomesthrough the chosen policy instruments.16.P olicy tool or instrument:an identifiable method through whichcollective action is structured to address a public problem.17.P olicy implementation:implementation is the process of putting agovernment program into effect;it is the total process of translating a legal mandate(授权),whether an executive order an enacted statute(法规),into appropriate program directives and structures that provide services or create goods.18.P olicy evaluation:policy evaluation refers broadly to the stage of thepolicy process at which it is determined how a public policy has actually fared in action.It involves the means being employed and the objectives being served.中文两个：1．什么是政策过程？从政治系统论看，政策过程指政策主体、政策客体以及政策环境之间相互联系和相互作用，政策系统呈现的动态运行过程；从政策过程的是只看，政策过程实质上是一种政治过程。