| The rapid development of the construction of E-government in China,promoted to government management, service improvement and the level ofinformation has played a huge role in promoting. However, in recent years,major domestic information security incidents occur frequently, but asa government agency management of the state, the security situation ismore seriously, of e-government information security has become acritical issue in the success of information, if the solution is not good,it is bound to affect the overall pace of information. Therefore, basedon the domestic and foreign information security technology theory andpractice experience’s foundation, unifies our country actual situationof e-government, application practice on key technology of informationsecurity of the discussion and analysis.Firstly, the concept of data encryption and authentication technologyclassification, the main algorithm, the realization ways and therespective advantages are analyzed, and briefly introduces the firewall,intrusion detection, security domain, VPN, TLS, J2EE platform technology,gives the method of security domain division of e-government intranet.Secondly, the article from the angle of management and technology,as well as physical security, network security, data security,certification of safety and management safety point of view, a detailedanalysis of the overall e-government intranet security requirements,structure form gives a safety guarantee system, and has carried on thesecurity risk analysis from the system of responsibility for productionsafety, security awareness, system and operation and maintenance, networkattack, network software and hardware, communication and other aspects,as well as physical security, network security, the corresponding data security, operating system security strategy design.Thirdly, this paper gives a design and implementation scheme ofmiddleware RSA encryption based on platform J2EE, and introduces the keypoints of building CA certificate infrastructure platform and the mattersneeding attention, and the specific implementation of firewall, Honey-IDSintrusion prevention system, safety domain in e-government idea. On thisbasis, the article mainly introduces two kinds of application of VPNtechnology based on IPSec and SSL, in order to improve the securitymechanism of remote access, and the TLS attack mode are analyzed in detail,given in response to the man in the middle attack key recovery mechanismto realize the design and protection system.Finally, on the basis of J2EE platform technology, e-governmentintranet status, core function design support platform gives informationsecurity applications, including implementation of the overall framework,database structure design, user identification module design and timingdiagram, identity authentication program logic framework and specificcode, security roles management etc... |
PDF Full Text Request