| With the rapid development of network technology and the popularization of computer application, people’s life style and working mode are gradually changing. Network environment for people’s communication, resource sharing and living to provides a convenient conditions. But along with the network brings us convenience, network security issues also ensued, malicious software and hacking has a serious impact on people’s network activities. Driven by economic interests, banking, financial and corporate institutions is the focus of network attacks. Therefore, how to ensure that the information on the Internet can be safe and reliable transmission in the communication between the two sides has been a matter of concern.According to the needs of some of today’s business and the company’s distribution and business exchanges, this paper designed a kind of applicable to distributed working mode of enterprise data secure transmission system to provide a secure and reliable platform for business communication and information exchange between the head office and branch. In the choice of system security agreement, the paper contrast some of the current security protocols, using the SSL protocol is selected by comparing this article as a system secure protocol for communication. By analysis of the safety performance of the SSL protocol, while the SSL protocol suitable for transmission over the network protection, but the authentication mechanism of SSL protocol still exist some security risks, it can not provide a complete non-repudiation, vulnerable to replay attacks and man-in-the-middle attacks, which an attacker to exploit these vulnerabilities to attack the transmission of information. Through knowledge, this paper proposed an improved scheme to the SSL protocol, use the Kerberos authentication mechanism to improve the authentication mechanism of the SSL handshake protocol,and using the improved SSL protocol as the system security transport protocol.The system architecture design uses the current popular B/S mode structure, use the web browser as a client, the core part of the system function is focused on the server-side application server. The B/S structure advantage is simple and easy to maintain and upgrade all the operation only for the server, and has a more rich and vivid expression to communicate with users. The main function of the server-side implementation in the Eclipse integrated development environment using the Java language to develop, Servlct and JSP technology development. In order to prove the effectiveness of the improve scheme of the SSL handshake protocol, the paper through the use of enterprise data secure transmission system was tested, the results show the improvement scheme of the SSL handshake protocol is practical. Finally, puts forward the current system still exist shortcomings,pointed out the direction for the follow-up work. |
PDF Full Text Request