| The paper mainly carries on the exploration and the research to the OA system's safety technology, in order to enhance the safety coefficient of the system, simultaneously without changing the original performance of the network; the security measure provided should be easily operated, and be advantageous for the automated management; also the security measure provided ought to have the good performance price ratio.In this system, in order to guarantee each user and the server of the network all has the only identifier, I used the hierarchical structure naming plan; the system user divides into three levels: the central level, the department level and the individual level, and each level belongs to different security ranks. The user in each security rank has the different jurisdiction, and implements three -level management plans. The security of system database uses the multi-level management, and each database has database ACL, in order to control the user, the server and the group to visit database. When a user opens a database, Domino classifies this user to the visit rank, thus has decided this user's jurisdiction. The user's visit rank in different database may be different. A pair of key has only been assigned for each user, aim to encrypt the documents. Simultaneously we carry on the encryption to specific threshold of the server, and encrypt the network data on the threshold, in order to guarantee all the data's security from the network infrastructure level.In the system we have used many safety work methods, mainly including the status recognition and the confirmation, the jurisdiction control, the digital signature and the encryption technology. The status recognition and the confirmation have safeguarded each user's status to be recognized reliably. The jurisdiction control has stipulated the application of safety technology to which what person might visit what resources by what way (for example foundation, reading, writing, deletion and so on) through ACL. The digital signature is one kind of authorized mechanism from the user to user. And at the same time this technology has guaranteed the data's integrity and safeguarded it could not be tampered with. The encryption technology includes double key encryption technology and single key encryption technology. The former uses the RSA algorithm, while the latter uses RC2 and the RC4 algorithm. They may memorize and encrypt the data field and the database file, as well as encrypt and process at the time when the text transmission and the network correspondence. In addition they can also support SSL, and may protect the data transmission correspondence in conversation level between the server and the server, and also between the server and the browser promptly (i.e. end-to-end) .Through utilization of safety technology, the OA system's security in our school has greatly strengthened. |
PDF Full Text Request