Pki-based Office Automation, Network And Information Security Research

With the widespread application of the computer network technology and the communication technology in the electronic government affairs and the electronic commerce, Office automation have provided the science basis for the enterprise or government's management and the decision-making. But we are anxious to the information security, as the special application domain in the information network, the office automation system is moving the data and the information which massive needs to protect. It has its own particularity. If the system security is destroyed and creates the sensitive information exposition or loses, or the network is attacked and so on, it possibly causes the serious consequence. How to guarantee timeliness, the integrity, the confidentiality and undeniable of the office automation systems to transmit data message under the network environment has become the main topic in the current network information security domain. PKI which based on the public key password theory and the technology provides the safeguard well to solve this problem.Using the certificate management public key, through authentication center CA, the PKI technology has solved the key management and the status authentication in the network, and has realized the data Canadian/decipher and the distinction, and has guaranteed the network security reliable realization.Through the research on PKI theories and the technical, the paper innovatively applies the PKI technology to the office automation network and designes and realizes password service systemwhich has the high security, the versatility and the extendibility. According to the PKCS standard, this system can provide and manage certificate, produce and manage the key, and provides the PKI service for the user. The main contribution is as follows:(1)The thesis has analyzed the security problem which exists in the office automation system, elaborated the relations among the office automation system and the network security, the password technology and the network information security relations in detail, and proposed the effective solution to the office automation information security.(2)The thesis thoroughly studied and discussed the password theory knowledge and the PKI theories and the architecture, and researched and the summarized the Crypto API and CDSA. and proposed design principle of OA system based on PKI/CA the environment, and on considering particular foundation of the office automation network, according to the network demand in movement, has designed a safe service architecture based on the PKI/CA mechanism.(3)According to the system demand, based on the safe service solution plan and the safe service architecture which proposed, it has designed a password service including: Public interface PSI, scheduling management unit, real-time monitoring and log unit, the password service unit, and details of the core of the password server ,password service unit in the process of the realization of the modules.(4)It carried on the simulation test to the system under the laboratory condition and the test result has satisfied the theory request.