| In recent years, with the continuous development of our country E-government,the rapid development of mobile Internet technology and the popularity ofsmartphones, tablet PCs and other mobile intelligent terminal services, mobileE-government with its anytime, anywhere, efficient, convenient, and collaborativeoffice properties has become a new trend of the E-government development.However, the mobile Internet is connective and open, also has a variety of accessmethods and the non-uniformity of the distribution of the terminal equipment, so theE-government information system based on mobile Internet is vulnerable to maliciousattack and destruction by hackers, information spies, network terrorist organizations,etc. Therefore, the information security problem of mobile E-government is veryimportant, and we must take effective safety measures to resist security threats fromthe Internet.Since the public key infrastructure (PKI) technology has solved a variety ofinformation security problems in network communications, and could ensureinformation security such as authentication, non-repudiation, and data integrity andconfidentiality, this paper introduces PKI technology to mobile governmentcollaborative office environment. It gives full play to its identification of mobiledevice users, its judgment of collaborative working responsibilities, and itsconfidentiality of sensitive government information, in order to establish a safe, stableand efficient E-government system.At present most E-Government systems based on PKI technology use RSA-1024algorithm, but the RSA algorithm is no longer safe. Furthermore, it has a greatpossibility of being a backdoor which could gain access to the system and stealconfidential information. That will definitely leave a significant potential safetyhazard for our national information security. Therefore, in order to protect the national security from threat and improve the security of mobile government collaborativeoffice system (MGCOS), this paper presents a safe and feasible solution using publickey cryptographic algorithm SM2based on elliptic curves which is developedindependently by China.Firstly, in theory, this paper describes the importance of PKI technolo gy inE-government, its developmental background and security problems, and thefunctional, security and performance requirement ana lysis of MGCOS. MGCOSvisitor’s identity is difficult to verify; collaborative working could easily lead torepudiation; and some transaction data is mostly sensitive and confidential. For theabove three problems, this paper designs a security strategy of MGCOS.Secondly, in technology, based on the entire layout of the office system network,it is mainly divided into three areas--mobile area, middle area and the internal area,and each area has been designed with specific functional modules. In mobile area,smartphone users login system with digital certificate and C/S client, and laptop userslogin with USB Key and B/S client. In middle area, network control module controlsthe transmission of information by border gatekeeper, and security audit modulebuilds a secure multilevel management mechanism for the whole system. In internalarea, authentication module is mainly based on digital certificate technology,collaborative working module works by role-based access control, and usermanagement module provides an abstract conceptual data model design that isprimarily used to manage the user information.Finally, in practice, the main contribution is to implement the SM2public keyalgorithm which is the core cryptographic algorithm in PKI system, the login methodthat uses digital certificate based on SM2algorithm, and relevant functional modules.The whole system is also tested and appraised comprehensively from function,security and performance. At last, the testing results are basically consistent with therequirements of real office system, so that it verifies the feasibility of this paper. |
PDF Full Text Request