Design And Realization Of The Linux-based Unified Security Management Platform

With the rapid development of internet technology,network informatization has permeated into all works of life.It brings us great convenience and security threats as well,such as viral transmission,malware attacks and intrusions,vulnerability exploitation and so on.Consequently,these security threats probably can lead to the loss of property,the leakage of personal information and trade secrets of an enterprise.What's more,the security of the government,finance and national defense can also unavoidably meet great challenge.Faced with so many security issues nowadays,various measures for security defense have been taken.Traditional security defense products with single function such as anti-virus,firewall,vulnerability patch updating can only provide basic security defense for a personal computer.In case that in an enterprise a single host's security issue may affect the overall internal network security,security products such as 360 Enterprise Security Management System,Kaspersky Security Management System can be applied for the unified security management of the netwok hosts.However,most present security products are for Windows and few for Linux operating system.To avoid too much dependence on others,Chinese government is making great force for the realization of homemade CPU and operating system to ensure national information security.Thus a series of China-made operating systems represented by Kylin have emerged,which are typically based on the 2nd time research-development and enhancement of Linux operating system.So the Linux-based unified security management is urgently required.Besed on the requirement of the unified security management among the network hosts,this topic designs and builds a platform framework of the Linux-based unified security management,which allows the design and realization of modular security management function with favorable extensibility.This platform framework consists of the front-end browser control site,the back-end uniformly managed server side and the managed host-client side The front-end browser control site is mainly in charge of displaying the security state of the netwok hosts and submitting security management order to the server.The back-end unified managed server side is in charge of running Web service,receiving a users' management order,and then sending it to the managed host-client side,also reporting the local security state to the front-end browser server side.The managed host-client side is in charge of the security deputy,receiving unified security management order,carrying it out,and reporting the local security state to the server side at the same time.The front-end browser control site interacts with the back-end server client based on Web while the server client side interacts with themanaged host-client side based on distributed XML-RPC technology.With the Linux-based platform framework of network unified security management,this paper designs and realizes the unified network-access functional module and the unified log-management functional module,etc.The unified networkaccess functional module includes: unified network-flow monitoring,blacklist-based unified network-access management,and network service management.The unified log-management functional module mainly carries out unified display of various managed client sides in log,which is beneficial for managers in centralized analysis.If necessary,the Linux-based platform framework of network unified security management can also make it available to design and realize the host virus checking and killing management functional module and unified host peripheral control management functional module.The research in this paper is of significant role in the promotion of homemade operating systems.