A Security Management Method Of Enterprise Intranet Based On Software Controller

In the modern enterprise environment,because of the mobility of staff,the large number of terminals and the weak security awareness of employees,the terminal security management problems exist in the intranet(unauthorized access,malicious terminal destruction,information leaks,terminal misuse of resources,terminal security vulnerabilities,viruses flooding etc.)are increasing day by day.In order to solve the terminal security problem of enterprise intranet better,this thesis proposes to consider the personnel management,terminal security and network security in enterprise as an organic whole.The terminal security management system is established on the security model of inspection,isolation,reinforcement and management.The system uses secure access control gateway to divide enterprise's network resources into pre-authentication domain,isolated repair domain and post-authentication domain,and provides continuous protection for intranet and terminal security based on software controller.The main achievements of this thesis are as follows:1.The software controller implements terminal user identity authentication.Before the user is successful in identity authentication,the terminal can only access the network resources of the pre-authentication domain,and can not access the business system in the post-authentication domain.2.The terminal agent makes security checks based on the enterprise security policy,and the security authentication is realized through the software controller.After the successful user identity authentication and terminal security authentication,the terminal can access the business system of the post-authentication domain,the users of different roles have different network access rights.3.The performance index of the software co ntroller is: a single security control server(under specific conditions),the average number of terminal hosts that is processed per minute is 2500.The system provides load sharing and disaster recovery plan through the resource pool.The resource pool can improve the system processing capacity by increasing the number of security control servers,and ensure the high availability of the system.