A Research And Design On Management Model For Electronic Document Based On Security Label

With the development of information technology and office automation, electronic documents are in more and more diverse form, bearing bigger and bigger value of information. Electronic document have better features than paper documents with fast transmission, easy backup and that it is easy to be illegally copied and manipulated without leaving any traces. These features speed up the popularity and widely application of electronic document, but also cause problems of unauthorized access and disclosure. Electronic document classification management is the effective means to solve these problems. Security label is the core components to realize of classification management. The attribute information of current security label is generally static with single contents, unable to trace or audit the flow of different kinds of electronic document, cannot achieve fine-grained control of electronic document. In addition, security label itself has some shortcomings, such as easily separated from the electronic document and that it is easy to be manipulated without leaving any traces. And the non-standard phenomenon management led to the security label could be added or deleted optionally. So how to protect the security label from being illegally destroyed or separated, how to regulate the administration process of security label, and how to realize better implementation of the electronic document security controls are the most important problems, which are currently faced by the electronic document management.Based on the research of the current situation of electronic document security and safety requirements, we design a new type of security label. Security label is composed of five kinds of attributes, including the document attributes of recording the electronic document unique ID, password attributes recorded the encryption status of electronic documents and encryption algorithm solution, limits the user permissions attribute for this document is what access, flow property records the detailed flow path of the document in the system, log properties recorded logs, the operation of electronic document can be taken as the basis for disclosure responsibility accountability. On the basis of the security label design implementation using C/S architecture security electronic document control system, system is composed of the console, the document storage server and the document management control client. Among them, the console is a UI interface management platform is responsible for the security label to add, document storage server based on VSFTPD to realize centralized storage of electronic documents, document control client implementation of electronic documents for remote access, upload, download, and based on the strategy of document control, and other functions. System based on the authorization of access strategy table to realize the electronic document, based on the document storage of filter driver technology to achieve the transparent encryption, based on the security label log properties to achieve the electronic document log audit of the operation. The system can realize the comprehensive, fine-grained and dynamic control electronic document, and trajectory tracking for electronic document provides strong guarantee responsibility and accountability.