With the rapid development of computer and network communication technology,computer viruses, various Trojan and hackers are threatening the cyber security all thetime. How to guarantee the security of basic information including the authenticity ofthe identity, data confidentiality, integrity and non-repudiation etc. in open or halfopen network environment (such as the Internet or Intranet) is the pre-condition forthe popularization and application of the electronic transactions, especially for theelectronic commerce and electronic government affairs.This paper presents the use of PKI technology in state grid corporation to set up aunified identity authentication platform, which aims for constructing the SafetyPlatform Supporting System primarily by providing the services of authenticity,confidentiality, integrity and no repudiation. The system can provide with centralizedmanagement, identity authentication, access control, responsibility identification foroperating system, network and application system. The user authentication and"Single Sign-on" in network information resources and the application system of stategrid corporation will be realized.(namely the user can access the authorizedapplication system and information resources by Single Sign-on). And then throughthe deployment of integrated security gateway at the entrance of Intranet (UTM)guarantee by the Internet into the province company Intranet data security. UTMdevice set of firewall, VPN, intrusion prevention (IPS), anti-virus, Internet behaviormanagement, network security, anti-spam, denial of service attacks (Anti-DoS),content filtering, NetFlow at a suit, a variety of security technologies such as highperformance, green low carbon, at the same time to fully support all kinds of routingprotocols, QoS, high availability (HA), log audit, and other functions, provides acomprehensive real-time security protection network boundary, help users againstincreasingly sophisticated security threats. |