沈阳市电子政务网络安全系统

摘要I摘要沈阳市电子政务网络安全系统电子政务的建设之所以被紧密锣鼓的纳入到工作日程中，是全球互联网技术的快速发展和我国信息化技术步伐不断前进的必然结果。电子政务系统历来被视为公开、廉洁、科学、高效等行政办事和行政决策机构建立的手段，同时它也促进了政府职能的转变和办事效率的提高。电子政务系统作为一个相对独立的专用信息系统，对系统网络的安全性影响不小，它的外网与外部紧密关联又相互交流且信息一般在内，内部和外部均可以造成无意的泄密和恶意的攻击。鉴于电子政务系统网络中的主机程序或许会受到电脑黑客的破坏、网络中的关键数据资源被盗或被窜改、系统工作效率有可能被大大降低、信息资源在由内部网向公网传递之前或许已被外界窃听或修改等安全忧患问题，本文对电子政务系统网络安全的综合处理方案进行了纵深的探讨。首先，分析了电子政务系统网络的安全状况。主要分析网络的安全目标、安全风险、安全需求、安全策略等；其次，分类研究了电子政务网络安全解决方案。包括访问的控制、物理的安全、数据的保护、通信的加密、病毒的防护、安全的审计和安全的管理等方面；最后，周密规划网络安全的全局解决方案。这是基于对沈阳市电子政务信息网络安全需要的分析和风险的预测所做出的规划。电子政务系统的可用性、可审查性、可控性、保密性、完整性等，还有一些城市的电子政务系统创设实践都得到电子政务系统网络安全整体解决方案深刻的指导意义。关键词：电子政务，网络安全，PKI，数字签名AbstractIIAbstractE-governmentNetworkSecuritySystemofshenyangCityWiththedevelopingofinternettechnologyandinformation-basedadvancingstepsofourcountry,e-governmenturgenttoincreasetotheworkschedule.TheE-Governmentchangeits’functionofworking，forexample:improvementofefficientwork；establishmentpublicandtransparent,scientific,highefficiencyofadministrationhandleaffairs;importantmeansofthepolicy-makingagencyandsoon.Thesecurityproblemisveryimportant,thesecuritysolutionofthespecialinformationsysteminGovernmentalsoisveryimportant,theyalldiscussedinthisarticle.Forthethreat,whichagainstingtheinformationsystemintheGovernmentofshenyang,comesfrominsideandoutsideofsystem.Usually,howtokeepthesecurityofnetworkisaverydifficultthing..IntegersolutionofGovernmentnetworkssecurityaimingathiddenthetroubleofnetworksecurity,whichisstudiedthoroughlyinpaper,suchassensitivitydatamayberevealedormodified,hostcomputerofGovernmentnetworkmaybeattackedbyillegalinbreak,etc.Atfirst,anintegersolutionofaunit’snetworksecurityLoudiarebrieflydesigned,whichthroughtheanalysisofrisk,acquirementasanapplyinginstanceThesecond,theintegersolutionofGovernmentnetworksecurityareanalyzed.,whichisclassifiedasphysicalsecurity,securityaudition,securitybackup,dataprotection,communicationsecret,virusprotection,etcLastly,thesecurityofGovernmentnetwork,consistingofrequirement,securityanalysisofrisk,targetofGovernmentareanalyzed.Theintegersolutionofnetworksecurityisanalyzedinthepaperandisessentialitytotheaspectofsecurity,usability,controlling,auditingofnetworksystem,alsocanbeusedtoimprovebuildingE-governmentofshenyangindifferentcities.Keywords：E-Government,NetworkSecurity,PKI,DigitalSignatureI目录摘要................................................................................IABSTRACT...............................................................................II第1章绪论........................................................................11.1研究背景和意义....................................................................11.2国内外发展现状....................................................................21.3文章主体结构......................................................................3第2章基本理论及概念..................................................................42.1基本概念..........................................................................42.2信息系统安全结构..................................................................42.2.1技术体系......................................................................42.2.2机构体系......................................................................52.2.3管理体系......................................................................62.3网络安全技术......................................................................62.3.1防火墙技术....................................................................62.3.2数据加密技术..................................................................92.3.3数字签名技术.................................................................112.3.4公共密钥体制技术.............................................................112.3.5SSL协议技术.................................................................13第3章电子政务的网络安全分析.........................................................153.1安全风险分析.....................................................................153.1.1物理层方面...................................................................153.1.2网络层方面...................................................................153.1.3.系统层方面..................................................................163.1.4.应用层方面..................................................................163.1.5管理层方面...................................................................173.2安全需求分析.....................................................................173.3安全控制策略分析.................................................................183.3.1层次结构.....................................................................183.3.2企业级的安全控制.............................................................193.3.3应用级的安全控制.............................................................193.3.4系统级的安全控制.............................................................203.3.5网络级的安全控制.............................................................213.4安全目标分析.....................................................................213.5小结.............................................................................22第4章电子政务网络系统的安全设计.......................