H thng gim st iu hnh an ninh mng

Ti liu m t sn phm

1. Gii thiu chung

-

{C th tn dng phn vit SRD1.1 ca Tn}

Mc ch
Phng php lun
o Profiling network asset
o Sensor collector & correlation
o Data Analysis
o Data Visualization
Kin trc tng th

2. Tnh nng
2.1.

Giao din gim st iu hnh SOC DashBoard

2.1.1. Giao din gim st Monitor DashBoard

{Attack Map}
Mc ch:
Gim st theo lu lng l mn hnh trc quan ha 3 lp: ngun, gateway v ch trn
bn Map. Mn hnh gim st phc v theo di cc nguyn tc an ton c s:
- Nguyn tc khi to: Ngun lun l nhm pht sinh yu cu (PC), ch (Server)
khng bao gi khi to (tr khi cn ng vai tr client update).
- Nguyn tc cch ly: Ngun mun n ch lun cn phi qua gateway, khng
phi mt (expose) trc tip ra bn ngoi. Client cng khng bao gi trc tip vo
cc my ch khng cung cp NETWORK_SERVICE (e.g. Database Server)
- Nguyn tc phn ti: Trc quan ha lu lng cho php nhn bit lng thng
lng bt thng.
Lu : Gia ngun c th c cc dch v ngang hng (peer to peer), nhng cn
sensor mng LAN (e.g. log t NAC hoc Secure Switch) mi cho thng tin c. Khi
trin khai G 1 s khng c d liu.
Tt c cc traffic bt thng c th hin bng mu khc.
M t yu cu:
- Cc connection c biu din theo timely event (gn nh tc thi)
- Cc concurrent connection cn c biu din ng thi (e.g. ti cng thi im)
- Zoom tng quan:
o Ngun: l mt network ca mt nhm cc n v
o ch: Server (under server farm)
o Gateway: Firewall / LoadBalancer / Application Delivery
Mockup

2.1.1.1.

Zoom chi tit: Cp 1 n mc thnh ph (e.g. H ni), mc 2 n mc qun (e.g.

Ba nh); Vng ngun: Phn r ra v tr cc network theo tng n v; Vng
Gateway: location cc thit b Gateway; Vng Server: location cc server farm.
Chi tit theo giao thc; Chi tit theo ngun;Chi tit theo gateway;Chi tit theo
server tng t nh lm trong demo.

Gim st theo dch v

{Vn c th s dng nn ca Attack Map}
Mc ch:
Theo di tnh trng cung cp ca cc dch v t thng tin ca Firewall.
Ghi ch: Cc thng tin chi tit ca Server cn phi ly t Sensor trc tip trn Server
(hin trin khai trong cc d n khc). V vy ni dung vn c nhng trong G 1 trin
khai DA5 khng c d liu (vn hin th trn mn hnh)
M tyu cu:
- Ngi dng chn mt dch v NETWORK_SERVICE nm trong profile ca
resource, chn n v cung cp. Eg: WEB_NEWS ca Trung tm thng
tin_BTLTTLL hoc FIREWALL_INTRANET ca Cc CNTT.
- H thng t ng phn tch cc SERVER hin ang cung cp dch v ca n v
ny bao gm cc SERVER no, phn b u, bao gm c server vt l (tht)
PHY_SRV, c server o VIR_SRV v cc i din ca n PROXY_SRV.
- Da trn phn b thit b, H thng t ng chn mc zoom ca map ph hp
(mc tng quan, mc thnh ph hoc mc qun)
- Cc server c biu din theo v tr
- Cc thng tin lin quan ti Server bao gm:
o Concurrent connection
o CPU/RAM Utilization (cha c thng tin trong G 1)
o Client
o Destination (vi cc thit b chuyn tip nh FW/IPS).

2.1.1.2.

Gim st theo n v
Tng t nh gim st theo dch v, nhng i tng l mt hoc mt nhm NET_SRC.

2.1.1.3.

Gim st theo i tng

i tng c th l mt server, mt PC, network device, ngi dng, tt c s quy v a
ch IP.
Mc ch:
Gim st ton b hnh vi ca mt i tng mng, kt ni ti thit b no, s dng
chng trnh g v theo thi gian ra sao.
{tham kho Gephi & GraphStream}
M t:
- Ngi dng s tm kim mt i tng mng (c th t bt c thuc tnh no t
hostname, ngi qun l, etc) xc nh i tng mng cn gim st.
- Mn hnh gim st s m t tt c
o cc kt ni hin c ca IP i tng ti cc IP khc, theo cng v giao
thc.
o cc kt ni user ti cc IP khc (nu c)

2.1.1.4.

Gim st theo topo

Mn hnh topo biu din s logic ca mt mng.
Mc ch:
Gim st theo topo th hin m hnh mng ca tng n v, trn c cc kt ni gia
cc thnh phn mng v cc thng tin ca tng thit b cng nh thng tin ca cc kt
ni.
M t yu cu:
- Ngi dng la chn n v/mng cn theo di
- Mn hnh s m t cc thng tin chi tit:
o Cc thit b c phn nhm theo khu vc, phng my ch, n v qun
l
o Cc ng kt ni vt l gia cc thit b
o Trng thi up/down, load ca thit b
o Hin th cc cnh bo ti thit b theo d liu ly t SIEM
o Hin th thng tin v mt qun l thit b
o Lu : Mn hnh topo c th hin th c thng tin v cc flow ca mng
theo mc real-time, nhng s cn thng tin t QFlow. Khi trin khai G
1 s khng c d liu.
Mockup:

Cc ng kt ni vt l gia cc thit b, bng thng ca kt ni biu din bng

rng ca cc cnh ni.
Mu ca cc kt ni ph thuc vo mc ti ca mt kt ni

C th thay i thng tin mng trc tip trn topo v h thng s t ng cp nht thng tin thay i vo
c s d liu.

2.1.2. Cnh bo
2.1.2.1.
Cnh bo an ninh
Mc ch : Cnh bo thi gian thc cho cc mi nguy hi trong h thng.
M t :
Cc s kin mng c theo di theo thi gian thc v v c nh mc nguy him theo thang im
10, mc im cng cao mi nguy him i vi h thng mng cng ln.

Da trn cc mi nguy him ny, h thng s t ng cnh bo cc s kin nguy him v cho ngi
qun tr thng qua popup, email. Ngi qun tr c th cu hnh mc cnh bo, hoc phng thc
cnh bo trong phn setting.

2.1.2.2.
Cnh bo thit b mng
Mc ch: Khi mt thit b tham gia vo h thng mng m thng tin thit b cha c lu trong
h thng qun l thit b, h thng s t ng cnh bo cho ngi qun tr bit. Da trn cnh bo ,
ngi qun tr c th nhp thng tin cho thit b , hoc nh du nghi ng v theo di.
M t:
Mi thit b khi c ghi nhn trong mt s kin mng tng ng vi mt IP (IP source hoc IP
ch). H thng t ng kim tra cc IP , nu IP cha c ng k hoc qun l trong h
thng, thit b s c nh du v cnh bo cho ngi qun tr

2.1.3. Giao din iu tra Forensics Dashboard

2.1.3.1.

iu tra theo i tng mng

iu tra trn h thng mng da vo cc d liu thu thp c trong qu kh. Cc i
tng mng l cc thit b gn liu vi cc c nhn hoc cc my ch cung cp dch v.
Mc ch:
D liu mng ca ton b h thng c lu tr trong mt khong thi gian nht nh.
Khi c yu cu, h thng c th tham chiu li d liu ny theo mt khong thi gia nht
nh pht hin nhng bt thng:
- Bt thng theo lu lng: khi lu lng mng ca mng c s bt thng c
bit nu thit b c kt ni vi bn ngoi. Lu lng c th l upload/download.
- Bt thng theo hnh vi: v thi gian hot ng ca thit b khng theo khung
gi chun, s dng cc dch v mi, cc gi tin mng c du hiu kh nghi,..
- Bt thng v truy cp: pht hin c thit b truy cp n cc dch v hay ti
nguyn nhy cm, truy cp vo cc vng khng c c quyn, hoc tn cng leo
thang c quyn.
Ch : giao din iu tra ch l cng c thu thp cc bng chng m bo c tnh
php l, ch khng phi cng c quyt nh mt vi phm.
M t yu cu:
- D liu iu tra s c lu tr trong h thng trong khong thi gian 1 nm.
- Ngi dng la chn thit b mng cn iu tra, ton b thng tin lch s ca
thit b s c thu thp.
- Giao din s hin th thng tin ca thit b ging nh giao din topo nhng l vi
cc thng tin qu kh trong mt khong thi gian c la chn.
- Cha thng tin v cc dch v m thit b kt ni n
o Cc dch v thng dng nh web, mail, dns,
o Cc kt ni n thit b khc trong mng
o Cc hnh vi trn mng nh port scan, ip scan,..

2.1.3.2.

iu tra theo dch v (protocol)

Tng t nh iu tra theo i tng mng nhng thay bng theo dch v. Dch v c
xc nh bng cng ca cc kt ni.

M t yu cu (b sung):
- Ngi dng chn mt dch v NETWORK_SERVICE nm trong profile ca
resource
- Giao din hin th tt c cc thit b c s dng dch v

2.1.3.3.

iu tra theo ngi dng

Tng t nh iu tra theo i tng mng nhng thay bng theo ngi dng.

M t yu cu (b sung):
- Ngi iu tra s chn mt i tng ngi dng trong danh sch
- Mi ngi dng s c danh sch cc thit b m mnh qun l
- V vy chc nng ny ch khc khi ngi dng c nhiu hn mt thit b
- Giao din hin th ton b thng tin ca tt c thit b

2.1.4. Giao din bo co Reporting Dashboard

2.2.

Event

2.2.1 Qun l s kin theo thi gian thc

Mc ch : Theo di cc s kin ca h thng theo thi gian thc.
M t : H thng theo di cc s kin c ly t h thng qun l an ninh tp trung (i.e: SIEM), sau
hin th d liu theo thi gian thc.

2.2.2 Thm sa xa s kin mng

Mc ch : Form thm d liu s kin mng.
M t : Ngoi vic h thng t ng detect s kin mng. Ngi qun tr cng c th thm d liu
s kin mt cch manual.
Cc thng tin s kin mng bao gm :
STT
1
2
3
4
5
6
7
7
8
9
10

Tn trng
Event_Name
Log_Source
Event_Count
Time
Low_level_categor
y
Source_IP
Source_Port
Destination_IP
Destination_Port
Username
Magnitude

Loi d liu
String
String
Integer
Date
String

M t
Tn s kin
Ngun d liu s kin
S lng event
Thi gian xy ra s kin
Loi s kin

String
Integer
String
Integer
String
Integer

IP ngun
Port ngun
IP ch
Port ch
Username
Mc nguy him

2.3.

Resource Profile
H thng h tr nhp liu profile qua 2 phng thc:
- Nhp thng tin qua form
- Nhp thng tin c sn bng tool import

2.3.1. Nhp thng tin qua form

H thng cho php thu bao to, xa, sa thng tin nhp liu
Tnh nng
Create
Delete
Edit

To mi bn ghi
Xa bn ghi
Chnh sa bn ghi
Cc form nhp liu c chia thnh cc li chnh:
- Infrastructure
- Network Equipments
- Logical Equipments
- Net Services
- Application Services
- User
Cc loi form nhp liu

Infrastructure
Network Equipments
Logical Equipments
Net Services
Application Services
User

2.3.1.1.

M t

M t
Cc thng tin lin quan n h tng nh room, rack
Cc thng tin lin quan n thit b mng nh
server, storage, switch...
Cc thng tin lin quan n thit b logic nh my
o, VLAN...
Cc thng tin lin quan n dch v internet nh
Web, DNS...
Cc thng tin lin quan n cc dch v ng dng
nh email hay cc ng dng ni b khc
Cc thng tin lin quan n ngun lc nh tn, n
v...

Infrastructure
H tng bao gm:
- Housing
- Rack

Housing
Cc trng d liu
Name

Location/GPS
Floor/Height
Commander

M t
Tn ca housing gm:
- Room
- Shelter
- Mobile Verhicle
V tr ca h tng
Tng
Ngi qun l

Earthing
PowerSource
Reference Document
Rack

ID ni t
ID ngun in
Ti liu tham chiu, s , bn v...

Cc trng d liu
RackEarth
RackPDU
Rack Slot ID
2.3.1.2.

M t
ID ni t
PDU ca Rack
ID Slot ca Rack

Network Equipments
Thit b mng bao gm:
- Server: My ch ca h thng
- Network Equipments: cc thit b mng khc nh Router, Switch, Firewall, IPS,
Network Printer, Video Controller,
- Storage Controller: Kim sotlu tr
- Storage Disk: a lu tr
Thit b mng

Server

Network Equipments

Storage Controller
Storage Disk

Thng tin qun l

- Device Information: Thng tin vt l ca Server
- Earthing Connections: Thng tin ni t Server
- Power Connections: Ngun in ca Server
- Locate: V tr ca Server
- Computing Slot: Khe cm CPU ca Server
- Network Slot: Khe cm mng ca Server
- Disk Slot: Khe cm a ca Server
- Device Information: Thng tin vt l ca thit b
- Earthing Connections: Thng tin ni t thit b
- Power Connections: Ngun in ca thit b
- Locate: V tr ca thit b
- Network Slot: Khe cm mng ca thit b
Thng tin tng t Network Equipments
- Device Information: Thng tin vt l ca a
- Disk Slot: Khe cm a

Device Information
Cc trng d liu
P/N Model name/Seria No
Other Interfaces
Backplane performance
BIOS

M t
Tn Model, s seria ca thit b
Cc giao din giao tip khc, nh USB,
Hiu sut ca bo chnh trong thit b
(Mainboard,Chassis, )
H thng BIOS ca thit b

Earthing Connections
Cc trng d liu
Earthing
RackEarth

M t
ID ni t
ID ca Rack ni t

Power Connections
Cc trng d liu
Power Source
RackPDU

M t
ID ngun in
ID ca Rack ngun in

Locate
Cc trng d liu
Rack Slot ID

M t
ID khe cm Rack

Computing Slot
Cc trng d liu
Com_Slot ID
CPU Slot
CPU

M t
ID khe cm CPU
V tr CPU
Thng tin CPU gm:
-Numer of Core: S lng core
- Core speed: Tc core
- Core type: Loi Core nh SPARC, Intel, .

Network Slot
Cc trng d liu
NetSlot ID
Slot Type
Interface (card)

M t
ID khe cm mng
Loi khe cm: PCIx,PCIe
Thng tin giao tip ca card mng gm:
- Type: loi card nh RJ45, RJ11, HDMI, VGA,
- Capacity: s lng port
- Thng tin vt l v port gm:
+ Port ID: ID ca port
+ Throughput:thng lng
+ Media: MAC hoc port khc

Disk Slot
Cc trng d liu
Disk Slot ID
Slot type
Disk

M t
ID khe cm a
loi khe cm
Thng tin v a gm:
- Type: Loi a SATA,SAS,
- Capacity: S lng Volume
- Speed: Tc RPM

2.3.1.3.

Logical Equipments
Cc thit b logical bao gm:
- Cc Server/PC h tr o ha
Proxy
NAT
Virtualization
- Mng
VLAN
- Storage
LUN

Cc Server/PC h tr o ha

Proxy
Proxy l mt Internet server lm nhim v chuyn tip thng tin v kim sot to s an ton cho
vic truy cp Internet ca cc my khch.
Cc trng d liu
OS
VendorOS
Tn Card mng
IP
Cng

H iu hnh
Tn n v cung cp OS
Tn card mng
a ch IP ca Proxy Server
Cng kt ni ca Proxy Server

NAT
NAT (Network Address Translation)l mt server cho php thay i thng tin a ch IP trong gi
tin ang c truyn qua mt thit b nh tuyn.
Cc trng d liu
OS
VendorOS
IP card mng 1
Loi IP card mng 1
Tn card mng 1
IP card mng 2

M t

M t
H iu hnh
Tn n v cung cpOS
a ch IP kt ni vi Router ADSL
IP4 hay IP6
Tn card mng
a ch IP kt ni n mng ni b cn truy cp
Internet thng qua NAT Server
IP4 hay IP6
Tn card mng
n v cung cp card mng

Loi IP card mng 2

Tn card mng 2
Nh cung cp card mng
Virtualization
Virtualization l Server cho php cho php to v chy cc my o trn my tht
Cc trng d liu
OS
VendorOS
IP
RAM
CPU
Phn mm o ha
Version

M t
H iu hnh
Tn n v cung cpOS
a ch IP
Thng s RAM
Thng s CPU
Phn mm cho php o ha server
Phin bn phn mm o ha

S lng my o ang chy

S lng my ang chy trn Server

Mng

VLAN
VLAN l mng LAN o
Cc trng d liu
OS
Vendor OS
Phn mm o ha
Version
Nh cung cp phn mm o ha

M t
H iu hnh
Tn n v cung cp OS
Phn mm o ha mng
Phin bn phn mm o ha mng
Nh cung cp phn mm o ha

Storage

LUN
LUN l ch s c s dng nhn dng cc phn vng logical trn a cng vt l.
Cc trng d liu
Tn a cng
Tn phn vng

M t
Tn a cng
Tn phn vng trn a cng

2.3.1.4 Net service

Net service l thng tin v cc dch v internet chy trn h thng bao gm:
Cc trng d liu
Service Name

Host
IP
Port
Provider

M t
Tn dch v:
- Web
- DNS
- ...
Tn host chy dch v
a ch IP ca my ch chy dch v
Cng dch v
Tn n v cung cp dch v

2.3.1.5 Application Service

Application service l thng tin v cc ng dng chy trn h thng bao gm:
Cc trng d liu
Service Name

Host
IP
Port
Vendor

M t
Tn ng dng:
- Email
- ...
- ...
Tn host chy ng dng
a ch IP ca my ch chy ng dng
Cng ng dng
Tn vendor cung cp ng dng

Version

Phin bn phn mm ca ng dng

2.3.1.6 Qun l ngun lc

Chc nng

M t chc nng
Gm cc thng tin sau:

Qun l thng tin

user

ID Code
Tn
Ngy thng nm sinh
Gii tnh
Ngy bt u lm vic
n v lm vic
Chc v
Nhim v c phn cng
Phm vi trch nhim ( c s dng PC, Server, cc network
devices
Email
S T
Nh mng
Loi my T

Gm cc thng tin sau:

Qun l thng tin c

nhn ca user

Qun l t bo m
k thut c ng
(BKTC)

CMTND
Cp bc
Nh ring
Qu Qun
H hng: V, chng, b m, con ci, anh ch em.
Tch hp vi cc thng tin khc t h thng DQN ( nu
c)

Chc nng ny cho php hin th cn b v mc bn vic theo s

t chc:
-

Hin th % tin cng vic c giao ca cn b

Hin th danh sch cc cn b c th phn cng cng vic (Cn
b cha c giao mt nhim v c th no)

Chc nng ny cho php to cc bo co sau :

Qun l bo co
thng k

Bo co thng tin cn b mi
Bo co cc cng vic lm ca 1 cn b (trong khong thi
gian)
Bo co nhn nhim v mi
Bo co tin cng vic hin ti

2.3.2

Nhp thng tin qua tool import

Cng c import cho php import thng tin phn cng thng qua file
cu hnh vo c s d liu ca h thng m khng cn phi nhp liu
bng tay (bng cch in form)
Phn cng c chia lm hai loi gm:
- Thit b mng: cc router, firewall
- My ch: Server/PC

Cc loi thit b
Thit b mng

My ch

2.4

Planning

M t
H tr cc vendor ph bin nh:
- Cissco
- Juniper
-...
H tr cc h iu hnh ph bin nh:
- WIndow
- Linux
- Ubuntu
- LinuxMint

2.4.1 Khi chc nng qun l nhim v

Chc nng

Li t k danh sch
nhim v

To nhim v t
ng

To nhim v th
cng

Lp k hoch

M t chc nng
Chc nng cho php tm kim v lit k tt c cc nhim v trong h
thng. H thng h tr lc v lit k nhim v theo cc tiu ch sau :
- Thi gian thc hin nhim v
- Ngi thc hin nhim v
- a im thc hin nhim v
- Trng thi nhim v
- Mc u tin ca nhim v
Chc nng t ng to nhim v khi c mt s kin an ninh xy ra
trong h thng.
Chc nng to nhim v do ngi qun tr h thng to. Ngi qun
tr h thng nhp cc thng tin c bn ca nhim v nh :
- Tn nhim v
- Mc u tin
- Ngy to
- Phng ban lin quan
Chc nng cho php ngi qun tr lp 1 k hoch gii quyt mt
nhim v no . y l key feature ca module qun l k hoch.
Ngi qun tr chn nhim v cn lp k hoch sau nhp cc thng
tin c bn sau :
- Ngi x l nhim v
- Trang thit b cn cp cho nhim v
- Thi gian bt u x l
- Thi gian kt thc

iu chnh k
hoch

Trng thi nhim v

Mc u tin

Chc nng cho php ngi qun tr iu chnh mt k hoch cho ph

hp vi tnh hnh thc t. Ngi qun tr c th iu chnh cc thng
tin k hoch bao gm :
- Thay i thi gian thc hin k hoch (Thi gian bt u, kt
thc)
- Thay i trng thi thc hin k hoch (Ch ph duyt , ang
thc hin, kt thc k hoch)
- Thay i ngi thc hin k hoch (Thm bt ngi thc
hin)
- Trng thi u tin ca nhim v

Chc nng cho php ngi quan tr theo di lch s, v thng tin ca
k hoch trong sut qu trnh thc hin k hoch.
2.4.2 Khi chc nng bo co k hoch
Theo di k hoch

Chc nng

Bo co kt thc
nhim v

Bo co tng th
nhim v

2.5

M t chc nng
Chc nng cho php ngi vn hnh to bo co kt thc mt nhim
v. Thng tin bo co bao gm cc thng tin c bn sau :
- Thi gian thc hin nhim v
- Ngi tham gia nhim v
- Nguyn nhn
- Kt qu
- nh gi
Chc nng cho php ngi qun tr lp bo co lit k danh sch
nhim v theo cc tiu ch sau :
- Theo thi gian thc hin
- Theo v tr nhim v
- Theo n v trin khai
- Theo tnh trng thc hin

Mediation Setting

Mc tiu : Cho php ngi dng qun tr kt ni ti cc h thng thu thp thng tin an ninh mng.
M t : H thng khai bo sn cc module thu thp thng tin an ninh mng, da trn , ngi qun tr c
th enable hay disable cc kt ni ti module ny

2.5.1 SIEM Integration

Ngi qun tr c th chn cc vendor khc nhau trong h thng SIEM tch hp vo h thng. V d:
IBM, Oracle, HP.
Ngi qun tr c th chn cc module trong SIEM tch hp trong h thng nh : Module thu thp
event, module thu thp flow.

2.5.2 Log Integeration

Ngi qun tr c th cu hnh enable hay disable kt ni ti cc h thng thu thp log t bn th 3.
2.5.3 Other Integration
Ngi qun tr c th cu hnh cc kt ni tch hp vi h thng khc nh h thng nh danh qun nhn,
h thng qun l mobile, h thng qun l ngun lc.

2.6

System Monitor (OMAP)

2.6.1

Qun l ngi dng

Cho php thc hin cc thao tc c bn qun l nhng ngi s dng h thng (xem, thm mi, chnh
sa, xa).

Phn nhm ngi dng theo phng ban n v.

Ngi dng trc thuc cc cc n v phng ban khc nhau s c quyn thao tc khc nhau trn h thng.

Phn quyn trn h thng bao gm: Qun tr, qun l, ngi s dng.

2.6.2

Gim st h thng
2.6.2.4 Gim st h thng

Gim st server
Cnh bo server down, up
Cnh bo y
Cnh bo dung lng Ram, CPU
Gim st ng dng
Cnh bo li kt ni n DB
Cnh bo li kt ni n h thng khc
Cnh bo tin trnh

2.6.2.5 Gim st v hin th trng thi kt ni

Cc kt ni vi giao din bn ngoi h thng c gim st theo nhng c tnh ring ca kt ni.
Ngi s dng h thng c th ng nhp vo h thng, xem cc thng s trng thi kt ni hin thi, bao
gm:
Gim st kt ni ti h thng qun l log tp trung ( i.e : SIEM)
Gim st cc kt ni khc
2.6.2.6 Cnh bo li
H thng h tr cc hnh thc cnh bo li nh sau:

Cnh bo bng Email: Khi c cnh bo, h thng s gi bn tin bng Email thng bo
li ti mt hay nhiu a ch email c khai bo trc trong h thng. Cch ny hiu
qu khi ngi qun tr h thng thng mt phng ring vi v tr t h thng.

Cnh bo qua giao din popup : Khi c cnh bo, h thng s hin popup trn trang
web cho ngi qun tr.

Vic cu hnh la chn hnh thc cnh bo no trong trng hp li no l ty thuc vo yu cu ca nh

khai thc.
2.6.2.7 Qun l d liulog
-

Ton b d liu file log ca h thng s c lu tr.

Vic sao lu d liu s c thc hin nh k.

Tiu chun k thut

S trin khai

{C th ly trong proposal}

Phng n xy dng c s d liu

-

T ng cp nht
ng b d liu

Kh nng m rng v sau