A Study On E-Government's Safe Matters

These years, E-government has caused great attention in many countries and areas. The construction of E-government in our country has also got much recognition and become the centre of national informationization. For governmental webs, safety is the first. Through several years' incessant perfection, many mellow skills and experiences have been achieved in safety of E-government.However, through the safety system of E-government, there is an obvious problem-that is, the inner web and outer one are not treated differently when studying the safety system. In fact, the inner web and outer one have different focuses on safety, hence, have great differences. The inner web should focus on digital signature, while the outer web on identity recognition and popedom management. It won't work well with only one safety system. So they should be treated differently.To solve this problem, it is necessary to introduce a resolvent which suggests that a safety system of PKI/PMI with user trust be introduced into the inner web. PKI solves "Who are you?", PMI solves "What can you do?", and the policy of user trust degree in charge of "Is the information you supply credibles? ". When the credibility of the main dropped to a certain value, using one-time password authentication methods on the main re-certification.Through the three safety entrances, users can get on the outer web to communicate with the government. The security mechanisms can improve access control model to impersonate the user access monitoring and control capabilities. Guarantee access control model in the user's identity uncertain security situation remains a high security control. The mechanism of the network to meet the three security needs: external user authentication; Authority control of the end-user; The information provided by the end user the credibility of control.Most work on the inner web is done on OA. Digital signature makes sure file source and its integrality and authenticity in the process of file transmission. Compared with the traditional signature and the encryption of public key scheme, identity based digital signature does not have any problem of cost on storage and management from CA issuing certificate, and we have no need to use third-party on line. That is why it is introduced into OA system of inner web in the thesis, presenting a digital signature based on government clerks' E-mail. The program meets with the OA network in the circulation of the documents more secure digital signature requirements.