Research And Design Of An Architecture For Governmental Data Center And Its Mechanism Of Access Control

With the rapid development of information technologies, especially in the wider application of Internet technology, more and more countries pay attention on the development of e-government. In China, the pace of the informatization construction continues to accelerate. Many government departments, using advanced network technology, information technology and software technology, has established all kinds of information systems, which can be achieved information sharing, business processing and scientific decision-making. However, due to lack of standardization and normalization, all kinds of systems, which are used by the various government departments or the public, are difficult to compatible. The governmental information is hard to share each other. A lot of valuable information resources, owned by the government, could not be utilized fully. So, How to improve the degree of government information resource sharing and utilization is an urgent need to address the problem.In addition, due to the special nature of government work, security and accuracy of the governmental information is the basis for the normal operation of business. Today, lots of government business is an unprecedented degree of dependence on database and network. Moreover, many business processes have been out of paper documents, totally dependented on governmental data in the database. Once the government information has been tampered or destroyed, government works are bound to be seriously affected, and even damage to the vital interests of the people. How to ensure the governmental data confidentiality, authenticity, integrity, availability? How to make the visitor have the appropriate permissions to operate the different information resources, as to prevent the user's misuse to destroy the data? Therefore, Access security problem is particularly important. For the different sharing mechanism in the network, researching and implementing an access control mechanism, which is suitable for the e-government system, has an important practical significance.Tackle these two problems, this paper proposes a design scheme, which is to build a data center oriented to the government information, and focuses on the two aspects of data center's architecture and data access security.In aspect of the architecture, this paper first analyzes the goal of building an e-government data center. Then, combined with existing theory and technology, this paper presents an architecture for governmental data center based on autonomic computing. This architecture realizes the intelligence of the system function modules by using the Agent's characteristics, which are responsiveness, proactiveness, social ability and autonomy. Through the multi-agent technology, it forms a full range of core business processing unit that can provide multi-service. It through autonomic computing technology introduces the self-management idea to the governmental data center, to achieve the system from the local to the global adaptive, simplify the management of the system of artificial. It also using the idea of web service will be business process provide in the form of service to realize good scalability for system.In aspect of data access security, after summarizing the advantages and disadvantages of the traditional access control mechanisms, this paper proposes a new access control mechanism oriented governmental data center. This mechanism consists of two parts. One is a policy-based access control mechanism which realizes the data access security within a range of a single-class data center. Another is a certificate-based access control mechanism, which realizes the the data access security between the different data centers. All data center have cross-regional, cross-platform capability.At last, this paper will be a task as the background, that is to build an electronic resource database for Zhejiang Province People's Congress. It will apply the architecture for governmental data center based on autonomic computing and the access control mechanism oriented governmental data center to the real project. After the completion of governmental electronic resource, it can realize a wide range of government information sharing, greatly improve the utilization of information resources, eliminate lots of information isolated islands, ensure the governmental data confidentiality, authenticity, integrity, availability.