本研究探討網路隔離之相關技術,從網路隔離的概念,說明網路隔離技術的發展沿革與網路隔離技術的作法,進而探討實體隔離網閘的技術原理,並從ISO27002資訊安全標準所建議之實務規範,彙整與網路存取相關的管理控制措施,對照各代網路隔離技術應配合的控制措施進行比較。經比較結果反映出第五代的隔離網閘技術能夠兼顧網路實體隔離及資料安全交換的效率,不失為一個能夠兼顧效率及落實安全管理的解決方案。本研究也以實現第五代的網路隔離技術的觀點,提出研發網路隔離產品的技術規格建議。結論認為如果我國的網路防衛技術要和其他國家相抗衡,應由政府出面或扶植相關產業,研發屬於我國自己的網路隔離技術與產品,以提昇機敏性資訊的安全防護能力。 This study investigates the technology related to the network isolation. As depicted in the history and practice of network isolation technology through the concept of network isolation, thereby search for the technical principle of Physical Isolation Netgap. To collect the management control measures related to network access through the practice norm of ISO27002 Information Security Standard. In order to compare with the control measures between different network isolation technology. The result is displayed that the Fifth Generation Network Isolation Netgap can manage both physical network isolation and efficient secure data exchange, it’s a great solution for managing network efficiency and security management. The research is also presented the technical specifications for the network isolation products according to the viewpoint of the Fifth Generation Network Isolation technology. The conclusion shows that the government should take the responsibility to support the relevant industries if we want to compete with other countries in the domain of network defense technology. To develop our own network isolation technology and products for enhancing the protection ability in confidential and sensitive information.
