The Research Of Linux Terminal Security Hardening And Accessing Technology

With the rapid development of information technology and mobile Internet technology, the demand for remote terminal to access corporate Intranet is increasingly urgent. Due to the opening characteristics of the mobile Internet which cannot guarantee the security of its information communication, how to achieve secure communication between mobile terminal and enterprise network become a new challenge for the remote access terminal. Remote mobile terminal access system consists of three entities, including terminals, data channel and access system, the security problem from any part of them could threaten the safety of the system. Traditional mobile access using VPN(Virtual Private Network) technology was only concerned about the safety of data transmission channel, ignoring the safety of terminal, which cannot meet the demand of enterprise terminal security access. Terminal security protection, reliable identity authentication and secure access technology are the key issues of the access system.This article is based on the demand of mobile terminal access of the power enterprise, in order to meet security requirements of mobile terminals. Aiming at the major security threat that the Linux mobile terminals are facing, and by way of analysis of the security features of the operating system, we put forward the corresponding security reinforcement measures, such as terminal identification based on hardware and dynamic security state detection technology. This paper finally chose the SSL(Secure Socket Layer) as authentication and encryption transmission protocol based on analyzing and comparing the implementation and application scope of the current VPN protocols. After analyzing the concrete implementation principle of OpenVPN in detail, we designed an integrated access system with hardware identification and dynamic safety detection. The system ensure the terminal itself, access process and security of data communication by strengthening terminals, encrypting data and detecting terminal state. The integrated access system designed in this paper has been basically meet the expected requirement in the experimental environment. The research of electric power enterprise mobile terminal secure access of will play a positive role in promoting the process of power enterprise informatization.