The Design And Implementation Of Intranet Security Control System Based On Content

In the digital office intranet,the leak of sensitive information problem caused by mismanagement of the data content increases prominently,which will be a direct threat to enterprises,institutions,and even national security and interests.The intranet security control system is always related to functions such as secure routers,firewalls,authentication,intrusion detection and so on,which can respond to threats like network attacks,illegal invasion,but slightly weak in content security.So this subject based on intranet security control system deeply studies the safety management of documents' content.The research found that the present intranet system in terms of sensitive information detection was often implemented by using the method of keyword matching.Natural language has the semantic association between word and word,so indentity whether the theme of the file content is sensitive only by matching individual sensitive words is not accuracy enough.At the same time,the files aren't further subdivided according to sensitivity.Besides,we often focus on the strict encryption control to sensitive files,which not only restricts their normal flow,but also neglects users' operation of files.Once information leaks,every will be caught off guard by the accident.Aiming at the shortcomings of all above,this designs and implements the solution of file security control based on contents.On the one hand,investigate the technology of parsing and extracting the content of a variety of file types.In order to divide the files into five levels namely safety,internal secret,secret,confidential,top-secret according to the sensitivity,the peoject designs a algorithm of sensitive content detection about files' theme.On the other hand,develop the strategy of audit as to monitoring,recording and reporting users' behavior to the operation of the specific files,based on which the project can provide the proof of content leak.Further more,classify and analyze the audit event in order to evaluating the leak risk status of system.And then,design and achieve the model of the content security control based on implementation of C/S architecture:the administrater gives out security strategies in the server;the clients commit the task according to the strategies and upload the feedback to the server.The paper discusses the research and implementation of the key problems above.Finally,test the accuracy of detection algorithm and the functions and performance of intranet content safety control model.