摘要
证券电子商务系统在针对证券交易活动的防窃取、防身份假冒、防篡改和防抵赖等方面比其他电子商务系统具有更高要求,因此在此类系统的构建中对应用层安全提出了更高的要求,本文在分析证券电子商务系统对信息安全性需求的前提下提出了应用层安全体系模型,并对其中的应用系统身份认证、SSL安全代理、数字签名、SET协议等关键技术以及应用层安全策略和风险防范措施进行了剖析和对比。
The securities e-commerce system should have a higher level than other e-commerce systems in respect of prevention of stealing, identity counterfeit, falsification, denying and so on in securities transaction activities, thus building such systems requires a higher level of application layer security. This paper puts forward an application layer security architecture model aider analyzing the information security demands of securities e-commerce system, and makes a deep analysis and comparison of its key technologies such as the application system identity certification, SSL security proxy, digital signature, and SET Protocol, as well as the applications security tactics and risk prevention measures.
出处
《计算机与网络》
2009年第5期48-50,56,共4页
Computer & Network
关键词
证券
电子商务
应用层信息安全体系
SSL安全代理
securities
e-commerce
application layer information security architecture
SSL security proxy
