摘要
共享信息平台的建立促进企事业网上业务的发展,但是平台的安全性问题日益严重。文章分析了信息平台建设存在的几个问题,认为应该从整个网络安全体系框架结构的设计出发,建立安全技术保障体系。可采用单点登陆、PKI认证、授权、基于角色的权限分配策略、利用应用网关访问资源,开发适合本系统的工作流访问机制等措施确保信息平台的安全。
Building an information sharing platform promotes enterprise networking business, but platform security poses an increasingly serious problem. Some problems of platform building are discussed. Establishing a security system based on IAFT( Information Assurance Technical Framework) is studied. The main ways to ensure information platform security are presented, which include PKI certification, authentication, role based access control( RBAC), SSO and working flow technology.
出处
《福建工程学院学报》
CAS
2008年第1期58-61,共4页
Journal of Fujian University of Technology
基金
福建省教育厅A类基金资助项目(JA05338)