Page 157 - 捷運技術 第53期
P. 157
改良式個人電腦異常連線排查實務 - 以臺北市政府捷運工程局為例
An Improved Checking Procedure on Computer
Abnormal Connections – DORTS Practice
Yung-Chang Ku *
Information and Technology Development Division, Department
of Rapid Transit Systems, Taipei City Government
No. 7, Ln. 48, Sec. 2, Zhongshan N. Rd., Zhongshan Dist., Taipei
City 10448, Taiwan (R.O.C.)
Michael Chien
Information and Technology Development Division, Department
of Rapid Transit Systems, Taipei City Government
Chi-Mei Lee
Criminal Investigation Bureau, National Police Agency, Ministry
of the Interior
Chih-Hsien Wang
Information and Technology Development Division, Department
of Rapid Transit Systems, Taipei City Government
Wei-Chen Lin
Information and Technology Development Division, Department
of Rapid Transit Systems, Taipei City Government
(Date received 21 September 2018 ; accepted:5 October 2018)
Abstract
This paper is to establish an efficient, feasible and rapid checking procedure
on abnormal computer connections in Department of Rapid Transit Systems
(DORTS). The proposed checking procedure has its own detection rules and
adjusts current anti-virus schedules which refer to IT personnel experience
and daily network bandwidth usages. This paper also establishes a 3-tier
abnormal computer connections scanning mechanism based on a proposed
checking procedure which includes weekly scanning, risk cases scanning, and
batch scanning. The implementation of the proposed checking procedure and
the 3-tier scanning mechanism are efficient and workable in DORTS and can
be used to increase the protection level of computers and their usage safety. In
addition, the monthly statistical report which is generated from the proposed
checking procedure can be used to evaluate the anti-virus performance of the
units and its personnel.
Keywords: Computer Abnormal Connections Checking Procedure, Information
Security, Computer Security Protection
* Corresponding author : unicon@dorts.gov.taipei
151
