摘要
ERP系统的安全应用一直是企业面临的信息安全问题,为了保障ERP应用与信息访问的安全性,我们为ERP系统搭建了一套IAM(Identity and Access Management)网络安全方案。该方案为ERP应用提供了可靠、高效的指纹认证以及安全可靠的包过滤防火墙模块、实时的数据库进程监控模块;从而确保ERP系统信息的安全可靠。本文叙述了IAM系统;分析了IAM系统内部与ERP系统的交互过程;然后详述了基于Windows API包过滤技术的防火墙模块的设计以及相关的其它网络安全设计,使系统可根据IAM身份验证信息进行动态过滤的目的,弥补了一般防火墙规则难以与应用软件灵活互动的不足,为企业应用的信息安全访问提供了可靠的保障。
The security application of ERP systems has always been one of information security issues that enterprises are confronted with.In order to guarantee the security of ERP application and information access,we set up an Internet security solution for ERP system,which is called Identity and Access Management (IAM).In this solution a reliable and efficient fingerprint authentication,a packet-filtering firewall module and a real-time database process monitoring module are provided for ERP system to ensure the information security.In this paper the author discusses the IAM system,analyses the interactive process between IAM system and ERP system and details the firewall design based on Windows API packet-filtering and other network security design.These modules allow the system filtrate dynamically according to the IAM authentication information,which makes up for the difficulty in interacting to application software Therefore,the security of information access can be guaranteed.
出处
《电子设计工程》
2014年第4期166-169,共4页
Electronic Design Engineering
基金
汕头市科技计划资助项目(152)