可信可控:信息安全的基石

Trustworthy and controllable the cornerstone of the information security

网络化已经成为当今社会、工作、生活、学习的必然。当前,网络安全已建设到了一定程度,但网络钓鱼、信息失泄密等事件却仍然屡有发生。本文从当前网络安全建设现状、安全困局着手,提出基于密码技术的可信应用安全架构,从信息安全基础设施入手逐层解决可信身份及基于可信身份基础之上的可信认证、可信授权、可信审计及数据防护。

Networking is becoming the necessary of today＇s society, work, live and study. The network securty has been constructed to a certain extent. But phishing and the information disclosure accidents are followed fast. This article begins with the situation and the difficulty of the network security, comes up with the trusted application security framework. Starts from the information security infrastructure, solves the problem of trusted identity and trusted authentication, authorization, credible auditing and data protection layer-by-layer.