A Study On The Security Strategy Of Educational E-ID Authentication System And Its Implementation

Educational electronic identity(e2ID for short)is a unique identification of personal identity which is in correspondence with ID number.With the expanding of application scope,especially the popularity of educational electronic-ID in national digital network teaching,the security of educational e-ID authentication system is becoming more and more important.This paper mainly studies the security strategy for handling the security threat of the of educational e-ID authentication system.This paper mainly consists of the following three parts:First,security strategy of educational e-ID authentication system under internal network.To ensure normal log in of internal network administrator,using mobile communication devices to implement secure log in based on dynamic password;To reduce the possibility of administrator taking advantage of position to control the system,controlling design concept by adopting character's visit;Last,to make sure legal operation of system administrator by establishing complete logging system and tracking user's operation process of system in real time.Second,security strategy of educational e-ID authentication system under external network.To improve the security design level of system entry,the author adopts USB key password factor and design idea of system mutual recognition in user's identity authentication module;To build channel for secure transmission of data and to implement design mode of mutual authentication based on HTTPS;Adopting filtering mechanism based on role IP to ensure a more secure connecting service for system.With all these precautions means,the overall security level of the system can be improved effectively.Third,security strategy of data storage of educational e-ID.With a high level of data security of educational e-ID authentication system,it's facing a higher risk.Considering human and non-human factors,data encryption and data backup are implemented to ensure the completion,confidentiality and availability of data and information.The analysis results show that the security strategy of application layer and data layer enables the secure communication between the client and server data in a certain extent and ensures the confidentiality of information resources of e2 ID authentication system without changing the business logic and network architecture of e2 ID authentication system,which reached research purpose and target expected.