可信水利信息系统构建研究

Attestation Research on Construction of Trusted Water Information System

随着水利信息化事业的快速发展,信息化基础设施及业务应用的建设日趋完善,然而相应的信息安全保障体系尚不健全。分析了当前水利行业的信息安全现状,总结了已采取的安全技术措施,提出将可信计算思想引入信息安全保障系统的构建过程中,并阐述了可信计算的实现、认证、度量,以弥补现有信息安全技术存在的不足。

With the instant development of information explosion process in water resources industry,the constructions of infrastructure and business application have been made a great progress.However,corresponding safeguard system for information security is still far from perfect.By analyzing present status of information security in water resources industry and summarizing security technological measures that have been taken,we suggest that trusted computing can be applied in construction of safeguard system for information security,making up for deficiency of the traditional security technologies.Realization,attestation and measurement of trusted computing are also elaborated in the article.