| The distributed system with microservice architecture is composed of multiple discrete services based on business logic through data sharing and information interaction,and it has the characteristics of low coupling,easy development,easy deployment,easy scaling,and has inherent advantages in dealing with high concurrency problems.It is the main technical route and system framework to solve large business scenarios.In view of this,data security cross domain access in distributed system is one of the urgent requirements and research hot spots in data security transmission.In this paper,two popular distributed framework technologies,five common cross domain technologies and three kinds of data encryption algorithms are studied in slightly depth,and a cross domain high security network communication technology scheme based on sensitive information such as e-personnel file information under distributed microservice framework is proposed in combination with the actual business project requirements.In this paper,the research work of secure data transmission in distributed microservice system mainly includes three aspects:The first is to build a distributed microservice system.At present,there are mainly two styles of frameworks: restful and RPC,which are used to build distributed systems.Each of them has its own advantages.In the face of a system that needs to be completely developed or upgraded,it is more appropriate to use a lightweight restful style framework represented by spring cloud in this scenario.The other situation is to be compatible with the original systems in different regions and realize the distributed interaction of information.At this time,it is more suitable to adopt RPC style framework which can negotiate communication protocol and data format autonomously.Starting from the above two scenarios,combined with the actual project of the electronic archives management system for migrate workers in a province,this paper respectively builds a restful style distributed framework based on spring cloud and an RPC style distributed framework based on WebSocket and WebService technology.The second is security authentication when distributed system calls.The distributed system adopts the idea of micro service,and each micro system performs its own functions and combines them to achieve the project requirements.Different from the single architecture system,the distributed system will have frequent data interaction,and the authentication of the message source can effectively alleviate the impact of data leakage,interception and tampering in this process.Therefore,this paper implements an additional security handshake sub protocol based on the existing HTTP protocol and TCP protocol.Finally,the transmission data is encrypted and decrypted dynamically.There are many kinds of existing encryption algorithms,and their security has been confirmed by a large number of theoretical and practical projects.However,most of the current common encryption algorithms are commercial products.According to the system requirements of the actual project,in order to ensure the security of data,we need to add a layer of security protection based on the existing encryption algorithm.Therefore,based on the salt encryption and symmetric encryption algorithm,this paper improves the encryption protection for data.The distributed secure transmission scheme proposed in this paper has been applied in the electronic archives management system of a province for 2 years.At the end of the paper,the improvement direction of the scheme is also proposed,which is believed to provide a new idea and solution for the future distributed system to realize data security cross domain transmission. |
PDF Full Text Request