The Design And Implementation Of E-government Network Security Architecture

Currently, E-Government has become a hotspot that the global information technology industry are concerned about. With the stratification, grouping and Broad Band development of E-Government network, more and more Statistic and decision-making job, daily supervise and check-up job, administration job such as OA, and integrative job facing multimedia will convert digital and network afairs, all that accord with trend of development together of information and network. But this bring forward high request to application security. Otherwise, E-Government come down to many important information, there into some information concern own country's security, therefore How to ensure all-sided security of E-government network will be a problem that builder and governor will face.The security aim of E-Government Affairs is to prevent all kinds of intrusion and attack, access without authorization, imitation, juggle, disavowal from exterior and inside. So we must fit user's all kinds of request, synthetize all kinds of security technology, and integrate all kinds of security administration measure, take integrated stratagem such as "unitive programming, steped execution"to realize integrated security defence of E-Government.The thesis first touches upon the development situations of E-government, and the challenges it is facing, followed by an analysis of several types of popular network security technologies, such as Firewall, Intrusion Detection System, Virtual Private Network, Virtual Local Area Network, encryption techniques, etc. Then the thesis analyzes the security defense system of E-government network in terms of security mechanism, framework, design criteria, and architecture hierarchy. Again, by a case-study of Network System Security Project of one department of Weifang in Shandong province, the thesis particularly analyses the network structure of its E-government, potential problems of network security, then offers the requirement analysis and the design scheme of network security for the actual complexion. The solution proposed in the thesis has utilized the mainstream network security technologies. The core firewall and the IDS protection configuration strategies are discussed in detail. A summary and a prospect of the network security system for the E-government are given.