论文标题:基于Domino/Notes信息系统安全机制研究与实现
The Research and Implementation of Information System"s Security Mechanism Based on Domino/Notes
论文作者 黄伟
论文导师 谈冉,论文学位 硕士,论文专业 计算机应用技术
论文单位 武汉理工大学,点击次数 787,论文页数 72页File Size5404k
2005-05-01论文网 http://www.lw23.com/lunwen_56917/ 信息系统;安全技术;安全机制;Domino/Notes
information system; security technology; security mechanism;Domino/Notes
21世纪是信息的世纪,信息成为一种重要的战略资源。随着信息技术的发展,信息系统己经深入应用到政治、经济、军事等领域中,影响着政府机构、企业的运转和人们的生活。对信息系统的任何破坏,都将对用户乃致整个信息社会产生巨大的影响。因此,确保信息系统的安全已成为世人关注的社会问题和计算机科学的热点研究课题。研究信息系统的安全性具有重大、直接的现实意义。Lotus Domino/Notes是一种企业级规模可伸缩的信息架构,也是强健的跨平台的客户机/服务器(Client/Server)应用开发平台。随着我国信息化进程的加快,很多行业和部门都构建了自己的信息系统,许多信息系统是以LotusDomino/Notes为其工作平台。湖北省锅炉压力容器检验研究所信息系统建设过程中,以Lotus Domino/Notes作为本信息系统的开发平台,该开发平台本身具有强大的安全机制。在该所信息系统的安全建设过程中,如何利用开发平台的安全机制加强系统安全性是本文的重点和难点。本文对信息系统安全性进行深入分析,包括信息系统安全定义、基本要求、安全问题的由来、面临的威胁以及安全策略。研究了信息系统相关的信息安全技术,包括密码技术、防火墙技术、数据库安全技术、数字签名、认证技术、VPN技术。分析Domino/Notes开发平台安全性,研究该平台用户标识符和检验字,分析交叉认证技术和数字签名原理,对该平台多层次的安全模型进行深入剖析。在此基础上,本文以湖北省锅炉压力容器检验研究所信息系统为背景,深入分析该研究所信息系统的安全需求和安全目标,结合Domino/Notes平台的强大的安全机制,提出并实现该所信息系统安全机制模型。本信息系统安全机制模型采用分层次实现系统安全性,分别从信息系统的物理级,网络级,系统级,应用级,管理级进行实现。结合Domino/Notes平台的安全机制,运用层次命名结构,身份认证、数据库存取控制、信息加密、数字签名和数字签章等安全技术重点加强系统在应用级的安全性。使该所信息系统从用户访问系统,到操作数据库与具体实现签章等工作,都处在系统安全控制之下。
21th century is an information century, information became an important stratagem resource. With the developing of the information technology, information system applied into politics , economy , military , etc, and influence run of government organization and enterprise, and people"s life. As long as any break appears in computer information system, it makes a huge impact on whole society, Therefore, ensure information system"s security has became a society problem And hot research project of computer science. There is an important, direct and realistic significance in research information system security.Lotus Domino/Notes is an enterprise level information structure, which"s dimension can be regulated, and it is also a strong C/S application development environment between different platforms. With our country information"s course speed up, many industry and department constructed information system, and many information system selected Domino/Notes as their work platforms. We selected Lotus Domino/Notes as the development platform for the information system in the process of the boiler tension test and research institute of Hubei information system"s construction. In the process of system security construction, how to use develope platform"s security mechanism to intensify system"s security is this paper"s emphasis and difficulty.This paper analyzed the information system security deeply, included base need and concept of information system security, origin of security problem and security strategy. It studied the security technology related to information system, included cryptogram technology, Fire Wall technology, database security technology, digital signature, authentic technology and VPN technology.It studied the security mechanism of Domino/Notes and its technology of across authentication, and its digital signature and analyzed its multi-layer safety model.Based on these research, This paper analyzed the information system security deeply on the background of the boiler tension test and research institute of Hubei information system, analyzed the security requirements and security object deeply.integrated with Domino/Notes strong security mechanism, put forward and realized the model of information system"s security mechanism. This security mechanism of information system applied the multi-layer to realize the system"s security, which can be divided into physical layer, network layer, system layer, application layer, manage layer. Integrated with Domino/Notes, used arrangement nominate structure , identity authentication , database access control , information encryption , digital signature and digital sign badge etc, emphasized the security of application layer. It made information system, from access system to operate database and sign badge, all these things under security control.
|
