| With the rapid development of computer network technology, the enterprises and institutions have set up their own internal networks. So the network office is becoming more and more common. The network office allows enterprises to effectively enhance office efficiency and management level, improve production efficiency. Complex intranets and the Internet makes computer terminals face information security issues which are getting increasingly important. As the complexity of network attacks and normalization, the risk of government agencies and research institutes office computers being attacked is intensified. Therefore, the strengthening of the safety management of computer terminals and supervision to safeguard research data security is of great significance.In this paper, based on computer terminal security check system project for Chinese Academy of Sciences, we conduct a study on the security problems of office environment computer, after which we design and implement a terminal security check system for Chinese Academy of Sciences. Using C# programming language, client software provides nine functional modules as follows, terminal security configuration management, patch management, terminal state collection, hardware information query, installed software management, computer optimization and acceleration, process traffic monitor, running service control and anti-virus scan. Computer terminal security check system for the CAS provides integrated security management system, checking and repairing the terminals’ security configuration, effectively reducing the terminals safety operation maintenance, improving management efficiency, ensuring the safe and stable operation of computer terminals.Firstly, this paper analyzes and summarizes the research status at home and abroad on terminal security systems, followed with an overview of the overall architecture and major feature of Computer Terminal Security Check System for the CAS.Secondly, this paper gives an introduction to the related technologies, namely WPF, WCF and asynchronous non-blocking communication theory, which are utilized during the designing and developing process of the client software of Computer Terminal Security Check System.Thirdly, aiming at the actual security situation faced by the CAS office terminal, this paper carries out a requirement analysis and designs hierarchical sub modules. The client is divided into four layers which are application layer, WCF service layer, business layer and communication layer, while a detailed description on the design of each layer is presented.Fourthly, based on the design of Computer Terminal Security Check System, the fundamental architecture of the whole client is implemented with the application of WPF, WCF and asynchronous non-blocking communication technologies. Among them, WPF technology greatly simplifies the interoperability between user interface and the underlying data models with the concept of Data driven. And with the concept of Service Oriented, WCF technology defines the hierarchy of the client, achieving the loosely coupled and highly extensible framework. In addition, a high performance communication module is implemented using asynchronous non-blocking communication technology and related frameworks.Finally, combining the observation of the system running status and an investigation of new technologies, this paper gives explanations on further optimization of the system. |
PDF Full Text Request