中文摘要：

随着互联网应用的快速发展，信息系统的安全性问题日益突出，安全基线的概念、技术与应用就更加重要。安全基线是微软安全生态系统中的一个重要组成部分，它通过安全合规管理器（SCM）以基线的形式判断用户的应用环境安全是否迭标，提供一个信息系统所需的最基本的安全保证。安全基线的概念源于微软为美国空军实施的安全配置方案，最终为美国政府机构所采纳，作为国家标准实施。文章对Windows安全基线的由来与发展、安全合规管理器（SCM）、安全基线的基本概念和实现原理、安全基线的部署与安全策略设置、Windows8．1的安全基线更新等进行讨论与分析。Windows安全基线的概念可以方便地推广到更加广泛的应用场合，如Linux操作系统。

英文摘要：

With the rapic1 development of internet applications,the security issues of information systems have become increasingly prominent, and consequently the concept, methodology and application of security baseline have become more important. Security baseline is an important part of Microsoft＇s security ecosystem, by the use of security compliance manager （SCM） which is able to determine whether the security requirements of users＇ application environment are met, providing a basic security assurance for an information system. The concept of security baseline originally coming from the Microsoft＇s security configuration initiative for the US Air Force, eventually had been accepted by the US government, and been deployed as national standards. This paper discusses and analyzes the origin and progress of Windows security baseline, security compliance manager, the basic concept and implementation rationale of security baseline, deployment and security policy settings of security baseline, and update of security baseline for Windows 8.1. The concept of Windows Security Baseline can be easily extended to a wide range of applications, such as Linux OS.