In this paper, through analyzing the information property and its security risk, the general design principles of the information system security architecture for the Agricultural Bank of China, Shandong Branch are provided, the multi-level security management strategies that include province center, city centers and branch offices is worked out, and meanwhile the whole information system security has been designed. In technological part, it begins with maintaining physical security, network security, system security, data security, application security and user security, and then takes proven actions, that include authentication, password checking, access control, anti-virus, firewall, leak scan, IDS, security audit, anti-hacker, backup mechanism and etc. In organization sketch part, the different positions are arranged by insisting the rule of the minimum right. In management sketch part, a series of effective regulations are settled, according to the Chinese governmental laws and the regulations of the Agricultural Bank of China. Now, the plan has been preliminarily applied into the practice.
|