Security Analysis And Design Of Document Flow System In E-Government

"E-government" is always considered the premier concept in the five-field application of the "Information Superhighway" throughout of the world. Document flow system is an important subsystem of E-government, which is helpful to increase the efficiency of government's work, improve the level of modern management, to enhance the transparency of official business. The security of government's system has relation to the benefit of country, so it is necessary to design the securities of network and application in system.The research is under the background of construct E-government system of Ezhou. This paper adopted Lotus Domino/Notes through comparing kinds of existing development platform. Then the security problem and its design in government's document flow system are introduced. The author's main workings are given as follows:Firstly, the paper analyzes the command technology of network security is, takes an emphases on researching security recovery system of E-government and studying physical insulation among three networks. Then security network frame of E-government of Ezhou is presented, which is of good expansibility and usability and security.Secondly, the applying security of document flow system is analyzed with Lotus Domino/Notes that is a developing platform. The paper researches the security policy in document flow system. On the basis of the design idea of reticular formation, the security design of reticular formation is modeled and its points of keeping security are consolidated. When the model is applied in the system, the efficiency and quality of design are increased and the security is enhanced.Thirdly, this paper presents a new model called Multi-Database , workflow and role-based access control (MDWRBAC) , on the basis of full analyzing role-based access control models. The characters of MDWRBAC model are as follows. 1. The workflow object is presented. It activates the role and commissions the authorization according to the workflow state, which ensures that only the corresponding role can work with the permission in each periods of the workflow. 2. The role's feedback signal to workflow can alter the system workflow dynamically and solve the dynamical authorization in the complex flow system. 3. Data is divided into two insulated parts: public data and system data. The common role can only access public data, moreover, the administrative role can only access system data . That ensures the system data security , lessens data redundancy and increases access efficiency. The fulfillment indicates MDWRBAC model can meet the security requirements of access control.Finally, through analyzing the demands of E-government of Ezhou. thepaper establishes the function module of document flow system. Take sending and receiving file administration systems for example, security policies are applied and realized in the system after they are researched.The research in the paper has definite theoretic and practical value in the field of security of information system. It is a useful reference for designing the security of information system.