Design And Research Of Interconnection Network And Security Based On The On-Line Audit System

The on-line audit system is a kind of audit mode relying on network platform. With the rapid development of the Internet, it is an inevitable result of circumstances. Under the premise of completing comprehensive on-line audit tasks, networks should be constructed based on audit data distribution and different network environment. At the same time, in order to ensure the security of the on-line audit system, security strategy and preventive measures should be carefully deployed. This dissertation is mainly based on the above two aspects of the research.Firstly, this dissertation expounds the network audit system in three main tasks: data acquisition, data transmission and data storage. Data acquisition is the key of network audit first step. Because the audit data distribution is different, data collection consists of single acquisition, multilevel acquisition and acquisition directly from unit. The data is collected through the network to the transmission, and transmission technologies that can be used are various, such as SDH, ATM, FR, APON, GPRS, and so on. After comprehensive and in-depth study, theory of analytic hierarchy process (AHP) is applied to all kinds of transmission technology. With rigorous analysis and mathematic calculation, decision-making about the best transmission scheme is completed. About data storage in the on-line audit system, this dissertation adopts the storage area network (SAN) technology, in order to adapt to the on-line audit system in large amount of data and the data security requirements of high and data type extensible storage etc.Secondly, this dissertation designs the topological structure of the on-line audit system, which is mainly composed of three parts: audited network, transmission network and auditing network. Based on the topology, three network models are designed respectively: centralized network model, distributed network model and point to point network model. These three kinds of network models are different in data distribution and the corresponding handling, but from the task these models contain approximately three links, namely from collecting data and data transmission to the auditing organs, data storage and related business processing in the auditing organs, which security is always the key issues.Thirdly, the on-line audit is a kind of audit mode based on Internet technology. The unlimited time and space of the Internet, and the potential safety hazard in the open technology always open up a security deposit, which could lead to data information and audit data to be intercepted or maliciously tampered with. In according to the on-line audit system security features, this dissertation builds a more comprehensive safety technology system to meet the physical security, network security, data security, system security, application security, managed security six aspects of security needs. In addition, with the on-line audit system for audit data transmission characteristics, this dissertation adopts PKI / PMI technology system for access control methods to describe its security during transmission.Finally, this dissertation carries out the preliminary research and design on on-line audit system on college campus. With the analysis of the necessity to develop on-line audit in college campus, this dissertation completes a safe network topology design and gives on the part of user authentication implementation of security for the follow-up research work carried out and lays a foundation, provides a reference to other related research in the field as well.