| With modern network technology constantly updating, the degree of enterprise intranet information technology construction deepening, and the scale expanding, O&M operations carried out by the FTP service has become more and more common. In operation process, FTP application brings convenience to the operator, but also exposed the risks such as the unauthorized operation may happen sometimes, illegal operations is not possible to be located, etc., makes the enterprise intranet audit work enhance the huge difficulty virtually, causing serious damage to the interests of enterprise. Use FTP proxy-based security auditing techniques to construct a safe and effective means of auditing, to take effective control of regulatory measures to O&M behavior of the enterprise intranet equipment, to make up for the operation management blind area of FTP service, is one of the primary task of building a information security of contemporary enterprise intranet.This paper firstly conducted a in-depth research and analysis on the current situation of O&M of enterprise intranet FTP operation, and summed up the security issues and disadvantages which exists or may causes, based on full understanding of the risk O&M brings to the enterprise information intranet, puts forward a solution of FTP security audit model based on proxy technology. Then this paper make carefully analysis of the key technologies, such as FTP characteristics, transmission model, dynamic random user password and so on, on this basis, design and implement a proxy module based on FTP protocol, and make this module into a set of controllable architecture of operation audit system, achieved the functions of FTP file transfer process proxy and forwarding, data record, process tracing playback, also make a better solution of the problems in current enterprise intranet O&M management in FTP.Through design and implementation, proved that this technology not only can achieve the real-time monitoring of the file transfer process, but also have a playback and view of all operating process after the event is over, and achieve the security audit, also has improved the IT management level of enterprise. |
PDF Full Text Request