中大機構典藏-NCU Institutional Repository-提供博碩士論文、考古題、期刊論文、研究計畫等下載:Item 987654321/95512
English  |  正體中文  |  简体中文  |  Items with full text/Total items : 80990/80990 (100%)
Visitors : 42686527      Online Users : 1445
RC Version 7.0 © Powered By DSPACE, MIT. Enhanced by NTU Library IR team.
Scope Tips:
  • please add "double quotation mark" for query phrases to get precise results
  • please goto advance search for comprehansive author search
  • Adv. Search
    HomeLoginUploadHelpAboutAdminister Goto mobile version


    Please use this identifier to cite or link to this item: http://ir.lib.ncu.edu.tw/handle/987654321/95512


    Title: 基於軟體定義廣域網路建置安全存取服務邊緣架構之研究-以T公司為例;Research on the Construction of Secure Access Service Edge Architecture Based on Software-Defined Wide Area Network: A Case Study of T Company
    Authors: 黃知緯;Huang, Chih-Wei
    Contributors: 資訊管理學系在職專班
    Keywords: 軟體定義廣域網路;零信任網路存取;安全存取服務邊緣;防火牆;Software-defined Wide Area Network (SD-WAN);Zero Trust Network Access (ZTNA);Secure Access Service Edge (SASE);Firewall
    Date: 2024-07-23
    Issue Date: 2024-10-09 16:54:53 (UTC+8)
    Publisher: 國立中央大學
    Abstract: 本研究探討如何利用軟體定義廣域網路(SD-WAN)與防火牆整合架構,結合零信任網路存取(ZTNA)技術,來建構安全存取服務邊緣架構(SASE)。已知目前金融業網路環境面臨的問題包括:中心化和專線依賴的網路架構,導致網路的調整和擴展費時又昂貴;而傳統的邊界安全防護難以應對日益複雜的網路環境,如遠端服務存取和雲端應用的支持等。本研究目標在模擬個案公司環境下,實作SASE架構,並針對市場上常見的SASE解決方案進行功能探討,以探究實際導入時的議題及需求。研究發現,SASE架構能夠有效整合SD-WAN和ZTNA等新技術,通過將各種網路和安全功能集成到一個統一平台,SASE確保只有經過授權的用戶和設備才能訪問特定的應用程序和數據,提高了企業的安全態勢,同時簡化了網路管理,降低運營成本。本研究提供了一個實施SASE的參考範例,證明了SASE架構在金融機構數字化轉型中的適用性和實施效益。研究建議企業在未來的網路規劃和擴展中,應將SD-WAN和SASE技術作為數位轉型的重要一環;同時,企業還需要充分了解自身對網路和安全的需求,並在導入新架構時謹慎評估,以避免影響關鍵業務運行。;This study explores how to utilize Software-Defined Wide Area Networking (SD-WAN) integrated with firewall architecture and combined with Zero Trust Network Access (ZTNA) technology to construct a Secure Access Service Edge (SASE) framework. The financial industry′s current network environment faces several challenges, including the centralized and leased line-dependent network architecture that makes network adjustments and expansions time-consuming and expensive. Traditional perimeter security measures are inadequate for the increasingly complex network environments, such as supporting remote access services and cloud applications. The objective of this study is to implement the SASE framework in a simulated environment of a case company and to investigate the functionalities of commonly available SASE solutions in the market, thereby exploring the issues and requirements during actual implementation. The findings indicate that the SASE framework can effectively integrate new technologies such as SD-WAN and ZTNA. By consolidating various network and security functions into a unified platform, SASE ensures that only authorized users and devices can access specific applications and data, enhancing the organization′s security posture while simplifying network management and reducing operational costs. This study provides a reference example for implementing SASE, demonstrating its applicability and benefits in the digital transformation of financial institutions. It recommends that organizations consider SD-WAN and SASE technologies as integral parts of their digital transformation strategies in future network planning and expansion. Additionally, organizations need to fully understand their network and security requirements and carefully evaluate the new architecture during implementation to avoid disrupting critical business operations.
    Appears in Collections:[Executive Master of Information Management] Electronic Thesis & Dissertation

    Files in This Item:

    File Description SizeFormat
    index.html0KbHTML43View/Open


    All items in NCUIR are protected by copyright, with all rights reserved.

    社群 sharing

    ::: Copyright National Central University. | 國立中央大學圖書館版權所有 | 收藏本站 | 設為首頁 | 最佳瀏覽畫面: 1024*768 | 建站日期:8-24-2009 :::
    DSpace Software Copyright © 2002-2004  MIT &  Hewlett-Packard  /   Enhanced by   NTU Library IR team Copyright ©   - 隱私權政策聲明