[](https://www.paloaltonetworks.com/?ts=markdown)

* CN
  
  * [USA (ENGLISH)](https://www.paloaltonetworks.com/)
  * [AUSTRALIA (ENGLISH)](https://www.paloaltonetworks.com.au)
  * [BRAZIL (PORTUGUÉS)](https://www.paloaltonetworks.com.br)
  * [CANADA (ENGLISH)](https://www.paloaltonetworks.ca)
  * CHINA (简体中文)
  * [FRANCE (FRANÇAIS)](https://www.paloaltonetworks.fr)
  * [GERMANY (DEUTSCH)](https://www.paloaltonetworks.de)
  * [INDIA (ENGLISH)](https://www.paloaltonetworks.in)
  * [ITALY (ITALIANO)](https://www.paloaltonetworks.it)
  * [JAPAN (日本語)](https://www.paloaltonetworks.jp)
  * [KOREA (한국어)](https://www.paloaltonetworks.co.kr)
  * [LATIN AMERICA (ESPAÑOL)](https://www.paloaltonetworks.lat)
  * [MEXICO (ESPAÑOL)](https://www.paloaltonetworks.com.mx)
  * [SINGAPORE (ENGLISH)](https://www.paloaltonetworks.sg)
  * [SPAIN (ESPAÑOL)](https://www.paloaltonetworks.es)
  * [TAIWAN (繁體中文)](https://www.paloaltonetworks.tw)
  * [UK (ENGLISH)](https://www.paloaltonetworks.co.uk)

* ![magnifying glass search icon to open search field](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/search-black.svg)

* [联系我们](https://www.paloaltonetworks.cn/contact?ts=markdown)

* [资源](https://www.paloaltonetworks.cn/resources?ts=markdown)

* [获得支持](https://support.paloaltonetworks.com/support)

* [遭遇攻击？](https://start.paloaltonetworks.com/contact-unit42.html)
  ![x close icon to close mobile navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/x-black.svg) [![Palo Alto Networks logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/pan-logo-dark.svg)](https://www.paloaltonetworks.com/?ts=markdown) ![magnifying glass search icon to open search field](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/search-black.svg)

* [](https://www.paloaltonetworks.com/?ts=markdown)

* 产品  
  ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) 产品  
  [人工智能驱动的网络安全平台](https://www.paloaltonetworks.cn/network-security?ts=markdown)
  
  * [Secure AI by Design](https://www.paloaltonetworks.cn/precision-ai-security/secure-ai-by-design?ts=markdown)
  
  * [Prisma AIRS](https://www.paloaltonetworks.cn/prisma/prisma-ai-runtime-security?ts=markdown)
  
  * [AI Access Security](https://www.paloaltonetworks.cn/sase/ai-access-security?ts=markdown)
  
  * [云交付的安全服务](https://www.paloaltonetworks.cn/network-security/security-subscriptions?ts=markdown)
  
  * [高级威胁预防](https://www.paloaltonetworks.cn/network-security/advanced-threat-prevention?ts=markdown)
  
  * [Advanced URL Filtering](https://www.paloaltonetworks.cn/network-security/advanced-url-filtering?ts=markdown)
  
  * [Advanced WildFire](https://www.paloaltonetworks.cn/network-security/advanced-wildfire?ts=markdown)
  
  * [Advanced DNS Security](https://www.paloaltonetworks.cn/network-security/advanced-dns-security?ts=markdown)
  
  * [企业数据丢失防护](https://www.paloaltonetworks.cn/sase/enterprise-data-loss-prevention?ts=markdown)
  
  * [Enterprise IoT Security](https://www.paloaltonetworks.cn/network-security/enterprise-device-security?ts=markdown)
  
  * [医疗物联网安全](https://www.paloaltonetworks.cn/network-security/medical-iot-security?ts=markdown)
  
  * [工业 OT 安全](https://www.paloaltonetworks.cn/network-security/industrial-ot-security?ts=markdown)
  
  * [SaaS Security](https://www.paloaltonetworks.cn/sase/saas-security?ts=markdown)
  
  * [新一代防火墙](https://www.paloaltonetworks.cn/network-security/next-generation-firewall?ts=markdown)
  
  * [硬件防火墙](https://www.paloaltonetworks.cn/network-security/hardware-firewall-innovations?ts=markdown)
  
  * [软件防火墙](https://www.paloaltonetworks.cn/network-security/software-firewalls?ts=markdown)
  
  * [Strata Cloud Manager](https://www.paloaltonetworks.cn/network-security/strata-cloud-manager?ts=markdown)
  
  * [SD-WAN for NGFW](https://www.paloaltonetworks.cn/network-security/sd-wan-subscription?ts=markdown)
  
  * [PAN-OS](https://www.paloaltonetworks.cn/network-security/pan-os?ts=markdown)
  
  * [Panorama](https://www.paloaltonetworks.cn/network-security/panorama?ts=markdown)
  
  * [Secure Access Service Edge](https://www.paloaltonetworks.cn/sase?ts=markdown)
  
  * [Prisma SASE](https://www.paloaltonetworks.cn/sase?ts=markdown)
  
  * [应用加速](https://www.paloaltonetworks.cn/sase/app-acceleration?ts=markdown)
  
  * [自主数字体验管理](https://www.paloaltonetworks.cn/sase/adem?ts=markdown)
  
  * [企业 DLP](https://www.paloaltonetworks.cn/sase/enterprise-data-loss-prevention?ts=markdown)
  
  * [Prisma Access](https://www.paloaltonetworks.cn/sase/access?ts=markdown)
  
  * [Prisma 浏览器](https://www.paloaltonetworks.cn/sase/prisma-browser?ts=markdown)
  
  * [Prisma SD-WAN](https://www.paloaltonetworks.cn/sase/sd-wan?ts=markdown)
  
  * [远程浏览器隔离](https://www.paloaltonetworks.cn/sase/remote-browser-isolation?ts=markdown)
  
  * [SaaS Security](https://www.paloaltonetworks.cn/sase/saas-security?ts=markdown)  
    [基于 AI 的安全运营平台](https://www.paloaltonetworks.cn/cortex?ts=markdown)
  
  * [Cloud Security](https://www.paloaltonetworks.cn/cortex/cloud?ts=markdown)
  
  * [Cortex Cloud](https://www.paloaltonetworks.cn/cortex/cloud?ts=markdown)
  
  * [应用安全](https://www.paloaltonetworks.cn/cortex/cloud/application-security?ts=markdown)
  
  * [云态势安全](https://www.paloaltonetworks.cn/cortex/cloud/cloud-posture-security?ts=markdown)
  
  * [云运行时安全](https://www.paloaltonetworks.cn/cortex/cloud/runtime-security?ts=markdown)
  
  * [Prisma Cloud](https://www.paloaltonetworks.cn/prisma/cloud?ts=markdown)
  
  * [Unit 42 托管检测和响应](https://www.paloaltonetworks.cn/cortex/managed-detection-and-response?ts=markdown)
  
  * [人工智能驱动的 SOC](https://www.paloaltonetworks.cn/cortex?ts=markdown)
  
  * [Cortex Advanced Email Security](https://www.paloaltonetworks.cn/cortex/advanced-email-security?ts=markdown)
  
  * [Cortex Exposure Management](https://www.paloaltonetworks.cn/cortex/exposure-management?ts=markdown)
  
  * [Cortex XSIAM](https://www.paloaltonetworks.cn/cortex/cortex-xsiam?ts=markdown)
  
  * [Cortex XDR](https://www.paloaltonetworks.cn/cortex/cortex-xdr?ts=markdown)
  
  * [Cortex XSOAR](https://www.paloaltonetworks.cn/cortex/cortex-xsoar?ts=markdown)
  
  * [Cortex Xpanse](https://www.paloaltonetworks.cn/cortex/cortex-xpanse?ts=markdown)
  
  * [托管 XSIAM](https://www.paloaltonetworks.cn/cortex/managed-xsiam?ts=markdown)

* 解决方案  
  ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) 解决方案  
  AI 安全
  
  * [安全的人工智能生态系统](https://www.paloaltonetworks.cn/prisma/prisma-ai-runtime-security?ts=markdown)
  * [安全使用 GenAI](https://www.paloaltonetworks.cn/sase/ai-access-security?ts=markdown)  
    网络安全
  * [云网络安全](https://www.paloaltonetworks.cn/network-security/software-firewalls?ts=markdown)
  * [数据中心安全](https://www.paloaltonetworks.cn/network-security/data-center?ts=markdown)
  * [DNS Security](https://www.paloaltonetworks.cn/network-security/advanced-dns-security?ts=markdown)
  * [入侵检测和防御](https://www.paloaltonetworks.cn/network-security/advanced-threat-prevention?ts=markdown)
  * [IoT Security](https://www.paloaltonetworks.cn/network-security/enterprise-device-security?ts=markdown)
  * [5G 安全](https://www.paloaltonetworks.cn/network-security/5g-security?ts=markdown)
  * [确保所有应用、用户和位置的安全](https://www.paloaltonetworks.cn/sase/secure-users-data-apps-devices?ts=markdown)
  * [确保分支机构转型的安全](https://www.paloaltonetworks.cn/sase/secure-branch-transformation?ts=markdown)
  * [确保任何设备上的工作安全](https://www.paloaltonetworks.cn/sase/secure-work-on-any-device?ts=markdown)
  * [VPN 替代](https://www.paloaltonetworks.cn/sase/vpn-replacement-for-secure-remote-access?ts=markdown)
  * [Web 和网络钓鱼安全](https://www.paloaltonetworks.cn/network-security/advanced-url-filtering?ts=markdown)  
    云安全
  * [应用安全态势管理 (ASPM)](https://www.paloaltonetworks.cn/cortex/cloud/application-security-posture-management?ts=markdown)
  * [软件供应链安全](https://www.paloaltonetworks.cn/cortex/cloud/software-supply-chain-security?ts=markdown)
  * [代码安全](https://www.paloaltonetworks.cn/cortex/cloud/code-security?ts=markdown)
  * [云安全态势管理 (CSPM)](https://www.paloaltonetworks.cn/cortex/cloud/cloud-security-posture-management?ts=markdown)
  * [云基础架构权限管理 (CIEM)](https://www.paloaltonetworks.cn/cortex/cloud/cloud-infrastructure-entitlement-management?ts=markdown)
  * [数据安全态势管理 (DSPM)](https://www.paloaltonetworks.cn/cortex/cloud/data-security-posture-management?ts=markdown)
  * [AI 安全态势管理 (AI-SPM)](https://www.paloaltonetworks.cn/cortex/cloud/ai-security-posture-management?ts=markdown)
  * [云检测与响应 (CDR)](https://www.paloaltonetworks.cn/cortex/cloud-detection-and-response?ts=markdown)
  * [云工作负载保护 (CWP)](https://www.paloaltonetworks.cn/cortex/cloud/cloud-workload-protection?ts=markdown)
  * [Web 应用及 API 安全 (WAAS)](https://www.paloaltonetworks.cn/cortex/cloud/web-app-api-security?ts=markdown)  
    安全运营
  * [云检测和响应](https://www.paloaltonetworks.cn/cortex/cloud-detection-and-response?ts=markdown)
  * [网络安全自动化](https://www.paloaltonetworks.cn/cortex/network-security-automation?ts=markdown)
  * [事件案例管理](https://www.paloaltonetworks.cn/cortex/incident-case-management?ts=markdown)
  * [SOC 自动化](https://www.paloaltonetworks.cn/cortex/security-operations-automation?ts=markdown)
  * [威胁情报管理](https://www.paloaltonetworks.cn/cortex/threat-intel-management?ts=markdown)
  * [托管的检测和响应](https://www.paloaltonetworks.cn/cortex/managed-detection-and-response?ts=markdown)
  * [攻击面管理](https://www.paloaltonetworks.cn/cortex/cortex-xpanse/attack-surface-management?ts=markdown)
  * [合规性管理](https://www.paloaltonetworks.cn/cortex/cortex-xpanse/compliance-management?ts=markdown)
  * [互联网运营管理](https://www.paloaltonetworks.cn/cortex/cortex-xpanse/internet-operations-management?ts=markdown)  
    端点安全
  * [端点防护](https://www.paloaltonetworks.cn/cortex/endpoint-protection?ts=markdown)
  * [扩展的检测和响应](https://www.paloaltonetworks.cn/cortex/detection-and-response?ts=markdown)
  * [勒索软件防护](https://www.paloaltonetworks.cn/cortex/ransomware-protection?ts=markdown)
  * [数字取证](https://www.paloaltonetworks.cn/cortex/digital-forensics?ts=markdown)  
    [行业](https://www.paloaltonetworks.cn/industry?ts=markdown)
  * [公共部门](https://www.paloaltonetworks.com/industry/public-sector)
  * [金融服务](https://www.paloaltonetworks.com/industry/financial-services)
  * [制造](https://www.paloaltonetworks.com/industry/manufacturing)
  * [医疗保健](https://www.paloaltonetworks.com/industry/healthcare)
  * [中小型企业解决方案](https://www.paloaltonetworks.com/industry/small-medium-business-portfolio)

* 服务  
  ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) 服务  
  [威胁情报和事件响应服务](https://www.paloaltonetworks.cn/unit42?ts=markdown)
  
  * [评估](https://www.paloaltonetworks.cn/unit42/assess?ts=markdown)
  
  * [AI 安全评估](https://www.paloaltonetworks.cn/unit42/assess/ai-security-assessment?ts=markdown)
  
  * [攻击面评估](https://www.paloaltonetworks.cn/unit42/assess/attack-surface-assessment?ts=markdown)
  
  * [防泄露准备工作审核](https://www.paloaltonetworks.cn/unit42/assess/breach-readiness-review?ts=markdown)
  
  * [BEC 准备情况评估](https://www.paloaltonetworks.com/bec-readiness-assessment)
  
  * [云安全评估](https://www.paloaltonetworks.com/unit42/assess/cloud-security-assessment)
  
  * [入侵评估](https://www.paloaltonetworks.cn/unit42/assess/compromise-assessment?ts=markdown)
  
  * [网络风险评估](https://www.paloaltonetworks.cn/unit42/assess/cyber-risk-assessment?ts=markdown)
  
  * [并购网络尽职调查](https://www.paloaltonetworks.cn/unit42/assess/mergers-acquisitions-cyber-due-dilligence?ts=markdown)
  
  * [渗透测试](https://www.paloaltonetworks.cn/unit42/assess/penetration-testing?ts=markdown)
  
  * [紫队演习](https://www.paloaltonetworks.cn/unit42/assess/purple-teaming?ts=markdown)
  
  * [勒索软件就绪评估](https://www.paloaltonetworks.cn/unit42/assess/ransomware-readiness-assessment?ts=markdown)
  
  * [SOC 评估](https://www.paloaltonetworks.com/unit42/assess/soc-assessment)
  
  * [供应链风险评估](https://www.paloaltonetworks.cn/unit42/assess/supply-chain-risk-assessment?ts=markdown)
  
  * [桌面演习](https://www.paloaltonetworks.cn/unit42/assess/tabletop-exercise?ts=markdown)
  
  * [Unit 42 顾问人员](https://www.paloaltonetworks.cn/unit42/retainer?ts=markdown)
  
  * [响应](https://www.paloaltonetworks.cn/unit42/respond?ts=markdown)
  
  * [云事故响应](https://www.paloaltonetworks.cn/unit42/respond/cloud-incident-response?ts=markdown)
  
  * [数字取证](https://www.paloaltonetworks.cn/unit42/respond/digital-forensics?ts=markdown)
  
  * [事件响应](https://www.paloaltonetworks.cn/unit42/respond/incident-response?ts=markdown)
  
  * [托管检测与响应](https://www.paloaltonetworks.cn/unit42/respond/managed-detection-response?ts=markdown)
  
  * [托管威胁追踪](https://www.paloaltonetworks.cn/unit42/respond/managed-threat-hunting?ts=markdown)
  
  * [托管 XSIAM](https://www.paloaltonetworks.cn/cortex/managed-xsiam?ts=markdown)
  
  * [Unit 42 顾问人员](https://www.paloaltonetworks.cn/unit42/retainer?ts=markdown)
  
  * [转型](https://www.paloaltonetworks.cn/unit42/transform?ts=markdown)
  
  * [事故响应计划制定与审核](https://www.paloaltonetworks.cn/unit42/transform/incident-response-plan-development-review?ts=markdown)
  
  * [安全计划设计](https://www.paloaltonetworks.cn/unit42/transform/security-program-design?ts=markdown)
  
  * [虚拟 CISO](https://www.paloaltonetworks.cn/unit42/transform/vciso?ts=markdown)
  
  * [零信任咨询](https://www.paloaltonetworks.com/unit42/transform/zero-trust-advisory)  
    [全球客户服务](https://www.paloaltonetworks.cn/services?ts=markdown)
  
  * [教育与培训](https://www.paloaltonetworks.com/services/education)
  
  * [专业服务](https://www.paloaltonetworks.com/services/consulting)
  
  * [成功工具](https://www.paloaltonetworks.com/services/customer-success-tools)
  
  * [支持服务](https://www.paloaltonetworks.com/services/solution-assurance)
  
  * [客户成功](https://www.paloaltonetworks.com/services/customer-success)  
    [![](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/logo-unit-42.svg)  
    Unit 42 顾问人员
    为满足企业的需求而定制，您可以选择将顾问人员工时数分配给我们的任意产品，包括主动网络风险管理服务。了解如何一键呼叫世界一流的 Unit 42 事故响应团队。
    了解更多](https://www.paloaltonetworks.cn/unit42/retainer?ts=markdown)

* 合作伙伴  
  ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) 合作伙伴  
  NextWave 合作伙伴
  
  * [NextWave 合作伙伴社区](https://www.paloaltonetworks.com/partners)
  * [云服务提供商](https://www.paloaltonetworks.com/partners/nextwave-for-csp)
  * [全球系统集成商](https://www.paloaltonetworks.com/partners/nextwave-for-gsi)
  * [技术合作伙伴](https://www.paloaltonetworks.com/partners/technology-partners)
  * [服务提供商](https://www.paloaltonetworks.com/partners/service-providers)
  * [解决方案提供商](https://www.paloaltonetworks.com/partners/nextwave-solution-providers)
  * [托管安全服务提供商](https://www.paloaltonetworks.com/partners/managed-security-service-providers)  
    采取行动
  * [门户网站登录](https://www.paloaltonetworks.com/partners/nextwave-partner-portal)
  * [管理的服务计划](https://www.paloaltonetworks.com/partners/managed-security-services-provider-program)
  * [成为合作伙伴](https://paloaltonetworks.my.site.com/NextWavePartnerProgram/s/partnerregistration?type=becomepartner)
  * [请求访问](https://paloaltonetworks.my.site.com/NextWavePartnerProgram/s/partnerregistration?type=requestaccess)
  * [查找合作伙伴](https://paloaltonetworks.my.site.com/NextWavePartnerProgram/s/partnerlocator)  
    [CYBERFORCE
    CYBERFORCE 代表了因其安全专业知识而值得信赖的前 1% 的合作伙伴工程师。
    了解更多](https://www.paloaltonetworks.com/cyberforce)

* 公司  
  ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) 公司  
  Palo Alto Networks
  
  * [关于我们](https://www.paloaltonetworks.cn/about-us?ts=markdown)
  * [管理团队](https://www.paloaltonetworks.com/about-us/management)
  * [投资者关系](https://investors.paloaltonetworks.com/)
  * [地点](https://www.paloaltonetworks.com/about-us/locations)
  * [道德与合规性](https://www.paloaltonetworks.com/company/ethics-and-compliance)
  * [企业责任](https://www.paloaltonetworks.com/about-us/corporate-responsibility)
  * [军人和退伍军人](https://jobs.paloaltonetworks.com/military)  
    [为什么选择 Palo Alto Networks？](https://www.paloaltonetworks.cn/why-paloaltonetworks?ts=markdown)
  * [Precision AI 安全](https://www.paloaltonetworks.cn/precision-ai-security?ts=markdown)
  * [我们的平台方法](https://www.paloaltonetworks.cn/why-paloaltonetworks/platformization?ts=markdown)
  * [加速网络安全转型](https://www.paloaltonetworks.com/why-paloaltonetworks/nam-cxo-portfolio)
  * [获得的奖项与表彰](https://www.paloaltonetworks.com/about-us/awards)
  * [客户案例](https://www.paloaltonetworks.cn/customers?ts=markdown)
  * [全球认证](https://www.paloaltonetworks.com/legal-notices/trust-center/compliance)
  * [全方位信任计划](https://www.paloaltonetworks.com/resources/whitepapers/trust-360)  
    职业生涯
  * [概述](https://jobs.paloaltonetworks.com/)
  * [文化与福利](https://jobs.paloaltonetworks.com/culture)  
    [《新闻周刊》评选出的最受欢迎的工作场所
    善待员工的企业
    阅读更多](https://www.paloaltonetworks.com/company/press/2021/palo-alto-networks-secures-top-ranking-on-newsweek-s-most-loved-workplaces-list-for-2021)

* 更多内容  
  ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) 更多内容  
  资源
  
  * [博客](https://www.paloaltonetworks.com/blog/?lang=zh-hans)
  * [Unit 42 威胁研究博客](https://unit42.paloaltonetworks.com/)
  * [社区](https://www.paloaltonetworks.com/communities)
  * [内容库](https://www.paloaltonetworks.cn/resources?ts=markdown)
  * [Cyberpedia](https://www.paloaltonetworks.cn/cyberpedia?ts=markdown)
  * [技术内幕](https://techinsider.paloaltonetworks.com/)
  * [知识库](https://knowledgebase.paloaltonetworks.com/)
  * [Palo Alto Networks 频道](https://tv.paloaltonetworks.com/)
  * [领导者的视角](https://www.paloaltonetworks.com/perspectives/)
  * [《网络视角》杂志](https://www.paloaltonetworks.com/cybersecurity-perspectives/cyber-perspectives-magazine)
  * [区域云位置](https://www.paloaltonetworks.cn/products/regional-cloud-locations?ts=markdown)
  * [技术文档](https://docs.paloaltonetworks.com/)
  * [安全态势评估](https://www.paloaltonetworks.cn/security-posture-assessment?ts=markdown)
  * [威胁载体播客](https://unit42.paloaltonetworks.com/unit-42-threat-vector-podcast/)  
    联系
  * [在线社区](https://live.paloaltonetworks.com/)
  * [活动资讯](https://events.paloaltonetworks.com/)
  * [高管简报中心](https://www.paloaltonetworks.com/about-us/executive-briefing-program)
  * [演示](https://www.paloaltonetworks.cn/demos?ts=markdown)
  * [联系我们](https://www.paloaltonetworks.cn/company/contact-sales?ts=markdown)  
    [博客
    了解行业趋势和全球最大网络安全公司的最新创新
    了解更多](https://www.paloaltonetworks.com/blog/?lang=zh-hans)

* CN  
  ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) Language
  
  * [USA (ENGLISH)](https://www.paloaltonetworks.com/)
  * [AUSTRALIA (ENGLISH)](https://www.paloaltonetworks.com.au)
  * [BRAZIL (PORTUGUÉS)](https://www.paloaltonetworks.com.br)
  * [CANADA (ENGLISH)](https://www.paloaltonetworks.ca)
  * CHINA (简体中文)
  * [FRANCE (FRANÇAIS)](https://www.paloaltonetworks.fr)
  * [GERMANY (DEUTSCH)](https://www.paloaltonetworks.de)
  * [INDIA (ENGLISH)](https://www.paloaltonetworks.in)
  * [ITALY (ITALIANO)](https://www.paloaltonetworks.it)
  * [JAPAN (日本語)](https://www.paloaltonetworks.jp)
  * [KOREA (한국어)](https://www.paloaltonetworks.co.kr)
  * [LATIN AMERICA (ESPAÑOL)](https://www.paloaltonetworks.lat)
  * [MEXICO (ESPAÑOL)](https://www.paloaltonetworks.com.mx)
  * [SINGAPORE (ENGLISH)](https://www.paloaltonetworks.sg)
  * [SPAIN (ESPAÑOL)](https://www.paloaltonetworks.es)
  * [TAIWAN (繁體中文)](https://www.paloaltonetworks.tw)
  * [UK (ENGLISH)](https://www.paloaltonetworks.co.uk)

* [联系我们](https://www.paloaltonetworks.cn/contact?ts=markdown)

* [资源](https://www.paloaltonetworks.cn/resources?ts=markdown)

* [获得支持](https://support.paloaltonetworks.com/support)

* [遭遇攻击？](https://start.paloaltonetworks.com/contact-unit42.html)

* [立即开始](https://www.paloaltonetworks.cn/get-started?ts=markdown)  
  搜索  
  Close search modal
  [](https://www.paloaltonetworks.com/?ts=markdown)

1. [Cyberpedia](https://www.paloaltonetworks.cn/cyberpedia?ts=markdown)
2. [Cybersecurity](https://www.paloaltonetworks.com/cyberpedia/cyber-security?ts=markdown)
3. [什么是零信任网络访问 (ZTNA)](https://www.paloaltonetworks.cn/cyberpedia/what-is-zero-trust-network-access-ztna?ts=markdown)  
   目录

* 什么是零信任网络访问 (ZTNA)
  * [什么是 ZTNA？](https://www.paloaltonetworks.cn/cyberpedia/what-is-zero-trust-network-access-ztna#what?ts=markdown)
  * [ZTNA 如何工作？](https://www.paloaltonetworks.cn/cyberpedia/what-is-zero-trust-network-access-ztna#how?ts=markdown)
  * [ZTNA 的优势](https://www.paloaltonetworks.cn/cyberpedia/what-is-zero-trust-network-access-ztna#benefits?ts=markdown)
  * [ZTNA 2.0](https://www.paloaltonetworks.cn/cyberpedia/what-is-zero-trust-network-access-ztna#two?ts=markdown)
  * [ZTNA \& SASE](https://www.paloaltonetworks.cn/cyberpedia/what-is-zero-trust-network-access-ztna#sase?ts=markdown)
* [什么是零信任网络安全？](https://www.paloaltonetworks.com/cyberpedia/what-is-zero-trust-network-security?ts=markdown)
  * [基于上下文的访问](https://www.paloaltonetworks.cn/cyberpedia/what-is-zero-trust-network-security#context?ts=markdown)
  * [安全通道](https://www.paloaltonetworks.cn/cyberpedia/what-is-zero-trust-network-security#secure?ts=markdown)
* [一致的访问和安全性，全球可用](https://www.paloaltonetworks.cn/cyberpedia/what-is-zero-trust-network-security#access?ts=markdown)

# 什么是零信任网络访问 (ZTNA)

目录

* * [什么是 ZTNA？](https://www.paloaltonetworks.cn/cyberpedia/what-is-zero-trust-network-access-ztna#what?ts=markdown)
  * [ZTNA 如何工作？](https://www.paloaltonetworks.cn/cyberpedia/what-is-zero-trust-network-access-ztna#how?ts=markdown)
  * [ZTNA 的优势](https://www.paloaltonetworks.cn/cyberpedia/what-is-zero-trust-network-access-ztna#benefits?ts=markdown)
  * [ZTNA 2.0](https://www.paloaltonetworks.cn/cyberpedia/what-is-zero-trust-network-access-ztna#two?ts=markdown)
* [ZTNA \& SASE](https://www.paloaltonetworks.cn/cyberpedia/what-is-zero-trust-network-access-ztna#sase?ts=markdown)

1. 什么是 ZTNA？

* * [什么是 ZTNA？](https://www.paloaltonetworks.cn/cyberpedia/what-is-zero-trust-network-access-ztna#what?ts=markdown)
  * [ZTNA 如何工作？](https://www.paloaltonetworks.cn/cyberpedia/what-is-zero-trust-network-access-ztna#how?ts=markdown)
  * [ZTNA 的优势](https://www.paloaltonetworks.cn/cyberpedia/what-is-zero-trust-network-access-ztna#benefits?ts=markdown)
  * [ZTNA 2.0](https://www.paloaltonetworks.cn/cyberpedia/what-is-zero-trust-network-access-ztna#two?ts=markdown)
* [ZTNA \& SASE](https://www.paloaltonetworks.cn/cyberpedia/what-is-zero-trust-network-access-ztna#sase?ts=markdown)

## 什么是 ZTNA？

零信任网络访问 (ZTNA) 是一类根据定义的访问控制策略来对应用程序和服务提供安全远程访问的技术。VPN 允许用户完全访问局域网，而 ZTNA 解决方案则不同，它默认拒绝，只允许用户访问明确被授予权限的服务。随着越来越多的远程用户加入网络，了解安全差距以及 ZTNA 解决方案可以为企业提供的安全优势非常重要。

\&amp;amp;amp;amp;amp;amp;amp;amp;amp;amp;nbsp;

## ZTNA 如何工作？

有了 ZTNA，在用户通过 ZTNA 服务认证后即可建立访问。然后，ZTNA 服务通过一个安全、加密的隧道代表用户提供对应用程序的访问。这为企业应用程序和服务提供了一层额外的保护，屏蔽了原本公开可见的 IP 地址。

与软件定义边界 (SDP) 一样，ZTNA 利用暗云的概念，防止用户看到自己无权访问的任何应用程序和服务。这样就能防止攻击者横向移动，否则被入侵的端点或凭据就会允许扫描和转向其他服务。

### ZTNA 对比 VPN

VPN 旨在授予对 LAN 的完全访问权限，为远程员工连接到公司网络提供一个私有的加密隧道。虽然这看起来像是一个实用的解决方案，但不幸的是 VPN 缺乏灵活性和精细度来控制和准确查看用户可以做什么，以及可以访问哪些应用。一旦用户被授予访问权限，就可以访问网络上的一切，从而导致安全缺口和策略执行问题。

![这张 VPN 示意图展示了用户在连接到 VPN 时必须采取什么路径来访问互联网。](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cyberpedia/vpn-diagram-network-traffic.png "This VPN diagram showcases the path a user must take in order to access the internet when connecting to a VPN.")

另一方面，ZTNA 基于精细的访问控制策略提供对应用程序的安全远程访问。它在用户连接到应用时对用户进行持续检查，而不是像 VPN 一样"一旦通过验证就进入"。因此，ZTNA 提供了一种"永不信任，始终验证"的最低权限方法，在整个用户会话中不断审查用户、设备和应用行为。

### VPN 替代/安全远程访问

当今许多企业关注的一个关键领域是用更现代的 ZTNA 解决方案取代过时的 VPN 技术，这种解决方案克服了性能瓶颈并简化了管理，为远程和混合型员工提供网络访问。这些 VPN 替代倡议通常受到多种因素的推动：

* 应用程序开始转向混合模型，利用本地以及云和多云环境。因为，传统的 VPN 技术将流量迂回或回传至内部"中枢"，既不能扩展，也不能提供最佳的用户体验。
* 我们现在访问企业应用的要求也在发生变化。传统上，用户利用托管设备，但现在我们看到越来越多的非托管设备也进入企业网络并请求访问企业应用程序。
* 最后，企业希望为所有应用提供一致的保护和安全模型，不仅仅是 Web 或遗留应用程序，而是所有应用。

VPN 解决方案在设计时并没有考虑到快速扩展、高性能和持续交付高级安全服务的需要，而现在需要将混合用户安全地连接到完成工作所需的大量应用程序。因此，企业已经开始使用 ZTNA 解决方案替换过时的 VPN 部署。

## ZTNA 的优势

ZTNA 服务中基于身份的验证和访问控制替代了大多数 VPN 配置通常使用的基于 IP 的访问控制，有助于减少企业的攻击面。ZTNA 还允许企业实施特定于位置或设备的访问控制策略，防止未修补或脆弱的设备连接到企业服务。这就缓解了常见的 VPN 相关难题，即 BYOD 远程用户被授予与公司办公室用户相同级别的访问权限，尽管事实上远程用户的安全控制措施通常较少。一些基于代理的 ZTNA 解决方案提供对连接用户和设备的预先身份验证信任评估，包括设备状态、身份验证状态和用户位置。然而，向远程和混合工作的快速转变，加上云采用的迅速崛起，暴露出 ZTNA 初始迭代（1.0 版）的巨大缺口。

![业界试图通过 ZTNA 1.0 解决安全访问](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cyberpedia/diagram-access-with-ztna-1-0.png "The industry tried to solve secure access with ztna 1.0")

## ZTNA 2.0

[零信任网络访问 2.0](https://www.paloaltonetworks.com/cyberpedia/what-is-zero-trust-network-access-2-0) 克服了原有 ZTNA 解决方案的局限性，提供安全连接，为拥有混合劳动力的企业实现更好的安全成果。ZTNA 2.0 提供：

* 真正的最低权限访问：在第 7 层根据 App-ID 识别应用程序。这样可以在应用和子应用级别实现精确的访问控制，独立于 IP 和端口号等网络结构。
* 持续的信任验证：授予对应用的访问权限后，根据设备状态、用户行为和应用行为的变化持续评估信任。如果检测到任何可疑行为，可以实时撤销访问权限。
* 持续的安全检查：持续对所有流量进行深入的检查（即使是已授权的连接），防止包括零日威胁在内的所有威胁。在合法用户凭据被窃取并针对应用或基础架构发起攻击的情况下，这一点尤其重要。
* 保护所有数据：通过单一 DLP 策略为企业中使用的所有应用实施一致的数据控制，包括私有应用和 SaaS。
* 保护所有应用：持续保护整个企业中使用的所有应用程序，包括现代的云原生应用、传统的私有应用和 SaaS 应用，以及使用动态端口和利用服务器发起连接的应用。

![零信任网络访问 (ZTNA) 1.0 示意图展示了传统 ZTNA 解决方案如何工作。](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cyberpedia/zero-trust-network-access-1-0-diagram.png "Zero Trust Network Access (ZTNA) 1.0 diagram showcases how legacy ZTNA solutions work.")

### ZTNA 1.0 对比 ZTNA 2.0

过去 24 个月，网络和安全领域最大的转变是，工作不再代表我们去的地方，而是我们从事的活动。混合工作是我们的新常态，这意味着我们的应用和用户现在无处不在，大大增加了我们的攻击面。与此同时，我们也看到越来越多、越来越精明的网络攻击试图利用这种大幅增加的攻击面。

![零信任网络访问 (ZTNA) 2.0 示意图展示了 ZTNA 2.0 解决方案通过持续信任验证和持续信任评估来保护所有应用和数据的优势。](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cyberpedia/zero-trust-network-access-2-0-diagram.png "Zero Trust Network Access (ZTNA) 2.0 diagram showcases the benefits a ZTNA 2.0 solution offers with continuous trust verification and continuous trust assessment to secure all apps and data.")

当前的 ZTNA 1.0 解决方案仅解决了与直接应用访问相关的一些问题。特别是 ZTNA 1.0 解决方案：

![ZTNA 2.0](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cyberpedia/diagram-ztna-1-0-vs-ztna-2-0.png "ZTNA 2.0")

## ZTNA \& SASE

然而，与 SDP 一样，ZTNA 在用户建立连接后不提供对来自应用程序的用户流量的内联检查。当用户的设备或凭据受到损害或者恶意内部人员利用其对资源的访问权限来破坏应用程序或主机时，这可能会导致潜在的安全问题。

[安全访问服务边缘](https://www.paloaltonetworks.com/cyberpedia/what-is-sase) (SASE) 是广域网 (WAN) 和安全服务在云交付服务"边缘"的融合，旨在帮助企业实现网络和安全基础设施的现代化，适应混合环境和混合员工的需求。SASE 解决方案将多个单点产品（包括 ZTNA、云 SWG、CASB、FWaaS 和 SD-WAN）整合到一个单一的集成服务中，从而在提高企业敏捷性的同时降低网络和安全复杂性。

开始 SASE 之旅的方法有很多，ZTNA 就是其中之一。安全访问服务边缘 (SASE) 解决方案融合了 ZTNA 2.0 基于身份的验证和精细访问控制功能，提供了更完整、更全面的方法。

在这篇[博客](https://www.paloaltonetworks.com/blog/2020/07/zero-trust-network-access-solutions/)中了解有关 ZTNA 演变的更多信息。  
相关内容  
[什么是安全访问服务边缘 (SASE)？
安全访问服务边缘 (SASE) 是将 WAN 和网络安全服务融合到单一的云交付解决方案中。](https://www.paloaltonetworks.com/cyberpedia/what-is-sase)  
[零信任网络访问用例网页
Prisma Access 集成了零信任网络访问 2.0 功能，有助于跨用户和应用程序提供安全、远程和最低权限的访问。](https://www.paloaltonetworks.cn/sase/ztna?ts=markdown)  
[Forrester New Wave：零信任网络访问
Prisma Access 首次在报告中被评为领导者：The Forrester New Wave™：零信任网络访问 (ZTNA)，2021 年第 3 季度。立即阅读报告。](https://start.paloaltonetworks.com/ztna-new-wave-report)  
[零信任网络访问互动
在互动中了解零信任网络访问 (ZTNA) 如何帮助确保云安全。](https://www.paloaltonetworks.com/resources/infographics/secure-the-cloud--zero-trust-network-access#!/home)  
![Share page on facebook](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/resources/facebook-circular-icon.svg) ![Share page on linkedin](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/resources/linkedin-circular-icon.svg) [![Share page by an email](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/resources/email-circular-icon.svg)](mailto:?subject=%E4%BB%80%E4%B9%88%E6%98%AF%E9%9B%B6%E4%BF%A1%E4%BB%BB%E7%BD%91%E7%BB%9C%E8%AE%BF%E9%97%AE%20%28ZTNA%29&body=%E9%9B%B6%E4%BF%A1%E4%BB%BB%E7%BD%91%E7%BB%9C%E8%AE%BF%E9%97%AE%20%28ZTNA%29%20%E6%98%AF%E4%B8%80%E7%B1%BB%E6%A0%B9%E6%8D%AE%E5%AE%9A%E4%B9%89%E7%9A%84%E8%AE%BF%E9%97%AE%E6%8E%A7%E5%88%B6%E7%AD%96%E7%95%A5%E6%9D%A5%E5%AF%B9%E5%BA%94%E7%94%A8%E7%A8%8B%E5%BA%8F%E5%92%8C%E6%9C%8D%E5%8A%A1%E6%8F%90%E4%BE%9B%E5%AE%89%E5%85%A8%E8%BF%9C%E7%A8%8B%E8%AE%BF%E9%97%AE%E7%9A%84%E6%8A%80%E6%9C%AF%E3%80%82%20at%20https%3A//www.paloaltonetworks.com/cyberpedia/what-is-zero-trust-network-access-ztna)  
返回页首  
[下一页](https://www.paloaltonetworks.cn/cyberpedia/what-is-zero-trust-network-security?ts=markdown) 什么是零信任网络安全？  
{#footer}

## 产品和服务

* [实时人工智能驱动的网络安全](https://www.paloaltonetworks.cn/network-security?ts=markdown)

* [Secure AI by Design](https://www.paloaltonetworks.cn/precision-ai-security/secure-ai-by-design?ts=markdown)

* [Prisma AIRS](https://www.paloaltonetworks.cn/prisma/prisma-ai-runtime-security?ts=markdown)

* [AI Access Security](https://www.paloaltonetworks.cn/sase/ai-access-security?ts=markdown)

* [云交付的安全服务](https://www.paloaltonetworks.cn/network-security/security-subscriptions?ts=markdown)

* [高级威胁预防](https://www.paloaltonetworks.cn/network-security/advanced-threat-prevention?ts=markdown)

* [Advanced URL Filtering](https://www.paloaltonetworks.cn/network-security/advanced-url-filtering?ts=markdown)

* [Advanced WildFire](https://www.paloaltonetworks.cn/network-security/advanced-wildfire?ts=markdown)

* [Advanced DNS Security](https://www.paloaltonetworks.cn/network-security/advanced-dns-security?ts=markdown)

* [企业数据丢失防护](https://www.paloaltonetworks.cn/sase/enterprise-data-loss-prevention?ts=markdown)

* [Enterprise IoT Security](https://www.paloaltonetworks.cn/network-security/enterprise-iot-security?ts=markdown)

* [Medical IoT Security](https://www.paloaltonetworks.cn/network-security/medical-iot-security?ts=markdown)

* [工业 OT 安全](https://www.paloaltonetworks.cn/network-security/industrial-ot-security?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.cn/sase/saas-security?ts=markdown)

* [新一代防火墙](https://www.paloaltonetworks.cn/network-security/next-generation-firewall?ts=markdown)

* [硬件防火墙](https://www.paloaltonetworks.cn/network-security/hardware-firewall-innovations?ts=markdown)

* [软件防火墙](https://www.paloaltonetworks.cn/network-security/software-firewalls?ts=markdown)

* [Strata Cloud Manager](https://www.paloaltonetworks.cn/network-security/strata-cloud-manager?ts=markdown)

* [SD-WAN for NGFW](https://www.paloaltonetworks.cn/network-security/sd-wan-subscription?ts=markdown)

* [PAN-OS](https://www.paloaltonetworks.cn/network-security/pan-os?ts=markdown)

* [Panorama](https://www.paloaltonetworks.cn/network-security/panorama?ts=markdown)

* [Secure Access Service Edge](https://www.paloaltonetworks.cn/sase?ts=markdown)

* [Prisma SASE](https://www.paloaltonetworks.cn/sase?ts=markdown)

* [应用加速](https://www.paloaltonetworks.cn/sase/app-acceleration?ts=markdown)

* [自主数字体验管理](https://www.paloaltonetworks.cn/sase/adem?ts=markdown)

* [Enterprise DLP](https://www.paloaltonetworks.cn/sase/enterprise-data-loss-prevention?ts=markdown)

* [Prisma Access](https://www.paloaltonetworks.cn/sase/access?ts=markdown)

* [Prisma Browser](https://www.paloaltonetworks.cn/sase/prisma-browser?ts=markdown)

* [Prisma SD-WAN](https://www.paloaltonetworks.cn/sase/sd-wan?ts=markdown)

* [远程浏览器隔离](https://www.paloaltonetworks.cn/sase/remote-browser-isolation?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.cn/sase/saas-security?ts=markdown)

* [基于 AI 的安全运营平台](https://www.paloaltonetworks.cn/cortex?ts=markdown)

* [Cloud Security](https://www.paloaltonetworks.cn/cortex/cloud?ts=markdown)

* [Cortex Cloud](https://www.paloaltonetworks.cn/cortex/cloud?ts=markdown)

* [Application Security](https://www.paloaltonetworks.cn/cortex/cloud/application-security?ts=markdown)

* [云态势安全](https://www.paloaltonetworks.cn/cortex/cloud/cloud-posture-security?ts=markdown)

* [Cloud Runtime Security](https://www.paloaltonetworks.cn/cortex/cloud/runtime-security?ts=markdown)

* [Prisma Cloud](https://www.paloaltonetworks.cn/prisma/cloud?ts=markdown)

* [人工智能驱动的 SOC](https://www.paloaltonetworks.cn/cortex?ts=markdown)

* [Cortex XSIAM](https://www.paloaltonetworks.cn/cortex/cortex-xsiam?ts=markdown)

* [Cortex XDR](https://www.paloaltonetworks.cn/cortex/cortex-xdr?ts=markdown)

* [Cortex XSOAR](https://www.paloaltonetworks.cn/cortex/cortex-xsoar?ts=markdown)

* [Cortex Xpanse](https://www.paloaltonetworks.cn/cortex/cortex-xpanse?ts=markdown)

* [Unit 42 托管检测和响应](https://www.paloaltonetworks.cn/cortex/managed-detection-and-response?ts=markdown)

* [Managed XSIAM](https://www.paloaltonetworks.cn/cortex/managed-xsiam?ts=markdown)

* [威胁情报和事件响应服务](https://www.paloaltonetworks.cn/unit42?ts=markdown)

* [主动评估](https://www.paloaltonetworks.cn/unit42/assess?ts=markdown)

* [事故响应](https://www.paloaltonetworks.cn/unit42/respond?ts=markdown)

* [安全策略转型](https://www.paloaltonetworks.cn/unit42/transform?ts=markdown)

* [发现威胁情报](https://www.paloaltonetworks.cn/unit42/threat-intelligence-partners?ts=markdown)

## 公司

* [关于我们](https://www.paloaltonetworks.cn/about-us?ts=markdown)
* [人才招聘](https://jobs.paloaltonetworks.com/en/)
* [联系我们](https://www.paloaltonetworks.cn/company/contact-sales?ts=markdown)
* [企业责任](https://www.paloaltonetworks.com/about-us/corporate-responsibility)
* [客户](https://www.paloaltonetworks.cn/customers?ts=markdown)
* [投资者关系](https://investors.paloaltonetworks.com/)
* [位置](https://www.paloaltonetworks.com/about-us/locations)
* [新闻资讯](https://www.paloaltonetworks.cn/company/newsroom?ts=markdown)

## 热门链接

* [博客](https://www.paloaltonetworks.com/blog/?lang=zh-hans)
* [社区](https://www.paloaltonetworks.com/communities)
* [内容库](https://www.paloaltonetworks.cn/resources?ts=markdown)
* [网络百科](https://www.paloaltonetworks.com/cyberpedia)
* [事件中心](https://events.paloaltonetworks.com/)
* [管理电子邮件首选项](https://start.paloaltonetworks.com/preference-center)
* [产品清单](https://www.paloaltonetworks.cn/products/products-a-z?ts=markdown)
* [产品认证](https://www.paloaltonetworks.com/legal-notices/trust-center/compliance)
* [报告漏洞](https://www.paloaltonetworks.com/security-disclosure)
* [网站地图](https://www.paloaltonetworks.cn/sitemap?ts=markdown)
* [技术文档](https://docs.paloaltonetworks.com/)
* [Unit 42](https://unit42.paloaltonetworks.com/)
* [请勿出售或分享我的个人信息](https://panwedd.exterro.net/portal/dsar.htm?target=panwedd)
  ![PAN logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/pan-logo-dark.svg)
* [隐私](https://www.paloaltonetworks.com/legal-notices/privacy)
* [信任中心](https://www.paloaltonetworks.com/legal-notices/trust-center)
* [使用条款](https://www.paloaltonetworks.com/legal-notices/terms-of-use)
* [文档](https://www.paloaltonetworks.com/legal)

版权所有 © 2025 Palo Alto Networks。保留所有权利

* [![](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/youtube-black.svg)](https://www.youtube.com/user/paloaltonetworks)
* [![](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/twitter-x-black.svg)](https://twitter.com/PaloAltoNtwks)
* [![](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/facebook-black.svg)](https://www.facebook.com/PaloAltoNetworks/)
* [![](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/linkedin-black.svg)](https://www.linkedin.com/company/palo-alto-networks)
* [![](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/icons/podcast.svg)](https://unit42.paloaltonetworks.com/unit-42-threat-vector-podcast/)
* CN  
  Select your language