The Research And Application Of Security Management In Network Management System

Generally speaking, the security management of the network management system includes two aspects, which are the security of the network management system itself and the security of the managed network object. Considering the scarcity of security management in network management system today and and its huge needs, the design and implemention of the security solution to the network management is proposed for the ChongQing information harbor project in this paper.The paper first introduces the requirement and several policy of the security management. Security management takes secure measure to protect the system, data and business in the network, it intends to prevent the network from intruding and destroying and reduce the loss at a greatest extent after the network has been intruded. Secondly, the paper analyzes the security of the popular solution in today's network management system, including the security of SNMP and the security of the popular technology platform for the network management system with relevant steps. Finally, based on J2EE security framework, the design and implementation of the security management subsystem are given in detail. Considering the expensive cost to fulfill the security management with special network, the management style that manages the network with the managed network itself is adopted. For the security of the managed network, the solution prevents the intranet from attacks by taking such protect measure as firewall, antivirus software and intrusion detection system. For the security of the network management system itself, identity authentication technology is first adopted to refuse the illegal user to enter the system, and then the system uniform service is provided by using security interception framework. A single access point for all the EJB in the system has been provided. Rigid access control strategy is taken in this solution; not only role based access control has been implemented but also the security management has been strengthened from those aspects such as time, region and so on. Finally, security proxy framework is adopted to make the security management of the IP network management system more flexible and expansible.This solution has already been applied to the ChongQing information harbor IP successfully.