CASIA OpenIR  > 毕业生  > 硕士学位论文
Alternative TitleApplication Technology Research of Network Security Based on PKI
Thesis Advisor张树武
Degree Grantor中国科学院研究生院
Place of Conferral中国科学院自动化研究所
Degree Discipline模式识别与智能系统
Keyword信息安全 Pki 身份认证 授权管理 日志审计 单点登陆 Information Security Pki Identity Authentication Authorization Management Log Auditing Sso
Abstract在信息技术迅速发展的今天,一个组织或一家企业在发展壮大的过程中,不可避免地会遇到网络安全管理的难题,本文可以为组织或企业在用户帐户管理、用户身份识别、用户访问控制、用户行为审计等方面提供信息技术支撑,主要解决复杂应用条件下用户帐户与行为的可控管理。对于提高组织机构的效率、信息共享程度及安全性都具有重要作用。 本文对目前网络上常用的身份认证技术进行深入研究,分析这些认证技术的优缺点和使用场合,同时也研究了其他信息安全技术,包括授权管理技术,单点登陆技术,提出了统一认证授权管理平台的设计和实现方案,使得系统和安全管理人员可以对信息系统中的用户和各种资源进行集中管理、集中权限分配、集中认证,从技术上保证应用系统安全策略的实施。平台在电子政务服务、电子金融服务,企业信息资源与用户配置管理等领域具有广阔的应用前景,对企业、政府乃至国家的信息化都具有重要意义。 本论文的工作主要有以下几个方面: (1) 对现有的身份认证技术进行了深入分析,探讨了多种身份认证技术的优缺点和适用场合。同时介绍了一些其他的网络安全应用技术,包括授权管理技术,单点登陆技术以及项目开发过程中一些实用的编程技术。 (2) 设计了一个统一认证授权管理平台。详细介绍了平台的总体设计,模块设计,并详解介绍了帐户管理、身份认证、授权管理、单点登陆的设计方案和相关接口;介绍了系统的页面设计,数据库设计;目前此平台已经可以实际应用。 (3) 介绍了统一认证授权管理平台的一些扩展应用,重点介绍了PKI技术在电子订单系统和USB-Key技术中的应用
Other AbstractIn face of the rapid development of information technology today, an organization or a company would meet the difficulty of network security management inevitably in the course of growing and development. The major object of this article is to provide strong information technology support for organizations and companies in users’ account management, users identification, visiting control, behavior checking and so on. It has effectively realized the management of user account and action under complicated application. It has played an important role in improving the efficiency of an organization and the degree of information sharing and security. The author has deeply studied several authentication technologied which are popular in network, analysed their advantages, disadvantages and proper application. At the same time, he has studied other information security technologies, including authorized management and SSO, and put forward the design and realization plan of unified authentication management platform. Then, the system and security administrator can concentratedly manage various users and information, distribute authority and attest identification, which has ensure the implement of system security strategy. This platform has broad application prospect in E-government services, E-financial services, enterprise management of information resource and users, and so on. It will be of far-reaching importance for enterprise, government or a country’s informationization. The main points studied in this article are as follows: (1) To deeply study the present identification technologies, to discuss their advantages, disadvantages and proper application. Besides, It has introduced other popular network security technologies, including authorized management, SSO and some programming technologies in project development. (2) To design an unified authentication management platform. It has introduced in details the general design plan, modular design plan, management plan of account, identification, authentication and SSO as well as relative interfaces. It has also described system page and database design. At present, this platform could be put into use. (3) To introduce some extended application of the unified authentication management platform, especially the application of PKI in E-order and USB-Key.
Other Identifier200628014628051
Document Type学位论文
Recommended Citation
GB/T 7714
王明波. 基于PKI的网络安全应用技术研究[D]. 中国科学院自动化研究所. 中国科学院研究生院,2009.
Files in This Item:
File Name/Size DocType Version Access License
CASIA_20062801462805(872KB) 暂不开放CC BY-NC-SAApplication Full Text
Related Services
Recommend this item
Usage statistics
Export to Endnote
Google Scholar
Similar articles in Google Scholar
[王明波]'s Articles
Baidu academic
Similar articles in Baidu academic
[王明波]'s Articles
Bing Scholar
Similar articles in Bing Scholar
[王明波]'s Articles
Terms of Use
No data!
Social Bookmark/Share
All comments (0)
No comment.

Items in the repository are protected by copyright, with all rights reserved, unless otherwise indicated.