| The information system for E-Government should provide the information for all typesof users such as the general public, the agency, the government employee and administrativestaff. The demands for the coordination and information interchange across the differentdepartments also require that the information system of all the departments should be openand interactive, and should provide services based on internet. So it is a very importantproposition to be solved urgently at present by the information security of e-government thathow to build a set of internet based service providing, open and interactive electronicauthentication infrastructure, which can provide unified, safe, and reliable electronicauthentication service for cross-sector and cross internet environment users. The paper givesintensive study of some existing key technical problems in the information security ofe-government. It focuses on solutions to open authentication, identity authentication securitywhile sharing global resources, electronic authentication interoperability, and network identitymanagement architecture. The specific research contents are as follows:1.Design and realization of network identity authentication model based on openauthenticationThis paper investigates the identity authentication security problem brought about byopen and interactive e-government environment and presents an open, efficient, and safenetwork identity authentication model which is suitable for e-government, and can solve thecredibility defect problem in current identity authentication model. It demonstrates thesecurity of the model by a formal method of strand space, gives preliminary technologyrealization of the model, and proves by experiment this model’s computing performance canmeet specific application demand.2.Design and realization of resource sharing model based on electronic authenticationSecurity mechanism for sharing information and resource is a major problem in thecourse of development of e-government. This paper presents a resource sharing model basedon electronic authentication, which extends OAUTH identity authentication protocol by usingPKI technical system. It proves the security of the model by a formal method of strand space,gives preliminary technology realization of the model.3.Research on the interoperability of identity authentication based on midwareInteroperability is a very important ability for the identity authentication. This paperanalyzes the main problem of PKI/CA interoperability existing in the current models,andbrings forward a new framework model based on Common Data Security Architecture (CDSA)to solve the above problem. Experiment shows that the new framework model ispractical and effective, which can be designed into a midware.4.Research on the framework of the Federation identity authenticationThe paper analyses the the framework of the Federation identity authentication, andaccording to the requirement of the network identiy administration for e-government, thepaper provides a new model of federation identity authentication based on Open identityexchange framework, which could be applied in multi-domains e-government network. |
PDF Full Text Request