The buildup of information network security system is a complex systematic project. It involves a variety of factors such as network security, system security, application security, physic security and management security. This thesis presents the Co. network security requirements based on the PICC secrecy requirements for information setup and application and via analyzing the in being status quo of information system security and existing risks earnestly, improvements and reinforcing design for the Co. internal networking security based mainly on the study of network security, system security, application security, physic security and management security , etc combining with the relevant networking security products, and adequately considering investment and practical require, the paper present that it should be systematic and orderly buildup. And solved the problem of uniform defense and concentrated control for the whole network virus, and the problem of accessing control of the important networks and networking servers by combining with corresponding security technique, anti-virus technique, firewall technique, invasion detected technique, and risk evaluation technique, etc, and implemented the security defenses for the weakest level (transmission security of inter-region mainline network) and kernel level in the system. |