| The application of Intranet has brought the revolutionary changes to enterprises, and improved the working efficiency and reaction ability of the market greatly, which make enterprises more competitive. But at the meantime, the problems of information safety are outstanding day by day.At first, this paper analyses the demands of information safety of Intranet, and summarizes the security threats and main safety problems of the Intranet. Then aiming at the security threats summed up, we do research to seven kinds of safety technology, such as: Access Control, Encryption, Identity Authentication, Virtual Private Network, Firewall, Invading Detection and Anti-virus technology.In addition, we analyse the security of the whole network system integrating the five-layer model of network security mechanism, and put forward the corresponding tactics for every layer.At last, on the basis of theoretics, we do the research on the safety technology of Intranet, integrating the concrete project instance ~ HuBei Transportation Logistics Information Platform. After investigating in an all-round way, we abstract the 3-level logical systematic structure of the HuBei Transportation Logistics Information System, and use safety software and hardware facilities to carry on the structural design of the security system synthetically. For instance : setting DMZ, dividing the Intranet VPN; Intrusion detecting and applying software/hardware firewall; data backup to resist the disaster; PKI Identity authentication, etc.We use security key technology in application system: (l)User's identity authentication based-on the PKI digital certificate, which guarantees the identity legitimacy of both sides of communication; (2)Log-in security mechanism, which defines authority according to the role , and adopts authority assign form and dynamic user's interface two methods synthetically to assign user's authority rationally; Adopt more advanced one-off log-in system , for which user just need to input the password once, the system can discern users' rank of security automatically, thus permit the user to enter corresponding application level. Additionally, the application program is the direct user of the database, which guarantees the securityof system maximum; (3) We use the MD5 algorithm to encrypt user's password, and propose improvement of the MD5 algorithm's application — MD5-app,after analysing the weakness of MD5 algorithm, which realize the dynamic encryption of the password, and enhance the security of the algorithm encrypt. (4) We utilize COM technology to develop three-lay structure Web application system, so it's easy for us to develop and maintain, at the same time we package encapsulation business and database connection, and the security is obviously improved.We should apply many kinds of safety methods synthetically to ensure security of Intranet, and guarantee security to the business of HuBei Transportation Logistics networked on the Intranet. |
PDF Full Text Request