高安全性数字化档案管理系统的设计与实现
|
摘要
数字化档案不仅具有更高的使用效率,还有利于纸质档案文档的保存保护,是一种更先进、环保的信息利用方式。档案管理系统软件是支撑档案数字化的必备基础。然而目前的档案管理系统很少具备信息安全防护功能,存在着权限滥用和信息泄露的风险。文章全面分析数字化档案管理中面临的安全风险,提出相应的应对措施,并组合使用双因子认证、权限分离、数据加密、密文检索等信息技术,设计实现了一套高安全性的数字化档案管理软件。目前,该系统已在某中央国家机关投入实际应用,并取得了良好的应用效果。
Digital archives not only have a higher efficiency of use but are also conducive to the preservation and preservation of paper archives. It is a more advanced and environmentally friendly method of information utilization. The archives management system software is the necessary foundation to support the digitalization of archives. However, the current archives management system rarely has the information security protection function, and there is a risk of abuse of authority and information leakage. The article comprehensively analyzes the security risks faced in digital archives management, proposes corresponding countermeasures, and uses a combination of two-factor authentication, permission separation, data encryption, ciphertext retrieval and other information technologies to design and implement a set of high security digital archives management system. At present, the system has been put into practical use in a Central State Organs and has achieved good results.
Digital archives not only have a higher efficiency of use but are also conducive to the preservation and preservation of paper archives. It is a more advanced and environmentally friendly method of information utilization. The archives management system software is the necessary foundation to support the digitalization of archives. However, the current archives management system rarely has the information security protection function, and there is a risk of abuse of authority and information leakage. The article comprehensively analyzes the security risks faced in digital archives management, proposes corresponding countermeasures, and uses a combination of two-factor authentication, permission separation, data encryption, ciphertext retrieval and other information technologies to design and implement a set of high security digital archives management system. At present, the system has been put into practical use in a Central State Organs and has achieved good results.
引文
[1]国家档案局.电子档案管理基本术语(征求意见稿)[S].2012.4.
[2]石俊萍,李必云.基于用户自定义结构的电子档案管理系统设计与实现[J].计算机与现代化,2010(2):127-129.
[3]梁静,任?.基于web技术的电子档案管理系统开发与设计[J].电子设计工程,2017(24):38-41.
[4]杨鑫瑶.一种可复用电子档案管理系统设计与实现[J].数字技术与应用,2016(1):200-201.
[5]王亚军.医德医风电子档案管理系统设计[J].解放军医院管理杂志,2016(4):325-327.
[6]张健.电子档案全文加密安全保护研究[J].上海档案,2013(7):19-22.
[7]李明华.当前电子档案安全应注意的几个问题[J].中国档案,2018(2):38-39.
[8]崔贵芳.浅谈电子档案信息安全措施[J].山西档案,2013(S1):97-98,106.
[9]李成东,徐飞.一种基于USBKEY的文件保险箱设计与实现[J].软件,2013,34(5):21-24.
[10]刘芳.一种数据库加密系统的设计与实现[J].软件,2012(11):97-98.
[11]国家档案局.电子档案管理系统基本功能[S].2017.12.
[2]石俊萍,李必云.基于用户自定义结构的电子档案管理系统设计与实现[J].计算机与现代化,2010(2):127-129.
[3]梁静,任?.基于web技术的电子档案管理系统开发与设计[J].电子设计工程,2017(24):38-41.
[4]杨鑫瑶.一种可复用电子档案管理系统设计与实现[J].数字技术与应用,2016(1):200-201.
[5]王亚军.医德医风电子档案管理系统设计[J].解放军医院管理杂志,2016(4):325-327.
[6]张健.电子档案全文加密安全保护研究[J].上海档案,2013(7):19-22.
[7]李明华.当前电子档案安全应注意的几个问题[J].中国档案,2018(2):38-39.
[8]崔贵芳.浅谈电子档案信息安全措施[J].山西档案,2013(S1):97-98,106.
[9]李成东,徐飞.一种基于USBKEY的文件保险箱设计与实现[J].软件,2013,34(5):21-24.
[10]刘芳.一种数据库加密系统的设计与实现[J].软件,2012(11):97-98.
[11]国家档案局.电子档案管理系统基本功能[S].2017.12.