| The electronic government affairs information security is an item of complex systems engineering, requests with the systems engineering concept, the theory and the method studies, the development and theimplementation government affairs system security.The design of security architecture is the key step. The theory of security architecture is to solve the security problem of information system from the whole, it describes the relation of security element to meet the security requirement, but at present the concept, type and construct of the security architecture on E-Government do not been attached importance to, it went against assuring the security of E-Govermnent.This article first in the SSE-CMM foundation, through the securityprocess and the security part conformity to the government affairsinformation system engineering in, has established based on the SSE-CMM information system government affairs safety engineeringpattern,this model comprise four security- process: design, do, check and maintain,include 11 process area and 61 basic practice of SSE-CMM.The realization of the model also accord with Deming cycle. Then E-Government security engineering will be translated to a well-defined mature and measurable work, and meets the information security object via the sustained improvement.But whether SSE-CMM or Information security engineering-life cycle model only offer the rule to construct a security architecture, but do not offer the refer model and operable measure to design security architecture. So this paper further studies the security architecture. Based on the quality of time and space in information system,three-dimension and multi-view security architecture for E-Government is proposed making use of the study technique of software architecture in software engineering. This model comprises 3 dimensions: time, space and security. Space dimension include security-domain view, protocol-layer view and system-resources view, time dimension includes security-cycle view, system life cycle view and information life cycle, security dimension includes security service view, security technology view and security manage view. This three-dimension and multi-view security architecture expresses the abstract of system from different hierarchy or point of view, offers a method to analyze security model and integrate security system.Finally particular security architecture for E-Government is designed and analyzed by using the theory of security architecture model Based on Space-time. |
PDF Full Text Request