电子政务的网络信息安全研究
|
摘要
在经济和信息全球化加快发展的背景下,促进电子政务的发展已经成为一个国家或地区参与全球竞争,提升国家或地区的全球竞争力,争得经济和社会发展“先机”的重要内容。但是,电子政务作为一项新生事物,它的发展道路并不是一帆风顺,其中,电子政务的发展就受到一个关键因素的制约——电子政务的网络信息安全。
首先,本文介绍了电子政务兴起的背景和国内外电子政务发展的现状,界定了电子政务与传统政务的区别,同时引出了本文的主题——电子政务的网络信息安全问题。
其次,本文全面分析了电子政务网络信息安全的特征和所面临的威胁,介绍了一些目前常用的网络信息安全技术,如防火墙技术,VPN技术,入侵检测技术和加解密技术等。
再次,在以上理论与技术研究的基础上,本文从理论上提出了一个解决电子政务安全的总体方案,并详细介绍了该方案所涉及的各种技术措施,作为建立安全电子政务系统的参考。
最后,本文的最大特色在于理论联系实际,即把理论上的解决方案结合到天津市电子政务安全建设的实际应用当中,具体分析了天津市电子政务系统的网络、应用及安全风险需求,结合天津市实际安全建设目标形成了一套包含网络安全设计、安全基础设施设计、应用系统安全设计、安全管理平台和安全管理体系这五部分的天津市电子政务总体安全建设方案。
In the environments of speedy development and economics and information globalization, promoting the electronic government affair has become an important content which a country or area participates the global competition, enhances the global competition capability and gains a leading position in the economic and social development. But the electronic government affair’s development is not successful as a new affair. Among the obstacles, the network information security of the electronic government affair will be an important factor which will restrict the development of the electronic government affair.
Firstly, the paper introduces the background of the progress of the electronic government affair and the development of the electronic government affair inside and outside the country. It makes certain the difference between the electronic government affair and the traditional government affair and brings forward the topic: the problem of the network information security in the electronic government affair.
Secondly, the paper analyzes the characteristics of the network information security in the electronic government affair and the threat which will be faced with. Also the paper introduces some technology of the network information security which is now used, such as Firewall, VPN, Intrusion Detection and Cipher.
Thirdly, on the basis of the above theory and technology research ,the paper provides a general solution of the security in the electronic government affair. And it introduces all kinds of the technology in detail which the solution is related to. The general solution will be a reference of the establishment of the electronic government affair system.
Lastly, the best feature of the paper is the combination of the theory and practice which is used in the security construction in the electronic government affair of Tianjin. It analyzes the network ,application and security risk demand in the electronic government affair system of Tianjin. And a general solution of security construction in electronic government affair of Tianjin comes into being according to the actual security construction destination of Tianjin, which includes the design of network security ,the design of security infrastructure ,the design of security in application system, the foundation of security management and the system of security management.
首先,本文介绍了电子政务兴起的背景和国内外电子政务发展的现状,界定了电子政务与传统政务的区别,同时引出了本文的主题——电子政务的网络信息安全问题。
其次,本文全面分析了电子政务网络信息安全的特征和所面临的威胁,介绍了一些目前常用的网络信息安全技术,如防火墙技术,VPN技术,入侵检测技术和加解密技术等。
再次,在以上理论与技术研究的基础上,本文从理论上提出了一个解决电子政务安全的总体方案,并详细介绍了该方案所涉及的各种技术措施,作为建立安全电子政务系统的参考。
最后,本文的最大特色在于理论联系实际,即把理论上的解决方案结合到天津市电子政务安全建设的实际应用当中,具体分析了天津市电子政务系统的网络、应用及安全风险需求,结合天津市实际安全建设目标形成了一套包含网络安全设计、安全基础设施设计、应用系统安全设计、安全管理平台和安全管理体系这五部分的天津市电子政务总体安全建设方案。
In the environments of speedy development and economics and information globalization, promoting the electronic government affair has become an important content which a country or area participates the global competition, enhances the global competition capability and gains a leading position in the economic and social development. But the electronic government affair’s development is not successful as a new affair. Among the obstacles, the network information security of the electronic government affair will be an important factor which will restrict the development of the electronic government affair.
Firstly, the paper introduces the background of the progress of the electronic government affair and the development of the electronic government affair inside and outside the country. It makes certain the difference between the electronic government affair and the traditional government affair and brings forward the topic: the problem of the network information security in the electronic government affair.
Secondly, the paper analyzes the characteristics of the network information security in the electronic government affair and the threat which will be faced with. Also the paper introduces some technology of the network information security which is now used, such as Firewall, VPN, Intrusion Detection and Cipher.
Thirdly, on the basis of the above theory and technology research ,the paper provides a general solution of the security in the electronic government affair. And it introduces all kinds of the technology in detail which the solution is related to. The general solution will be a reference of the establishment of the electronic government affair system.
Lastly, the best feature of the paper is the combination of the theory and practice which is used in the security construction in the electronic government affair of Tianjin. It analyzes the network ,application and security risk demand in the electronic government affair system of Tianjin. And a general solution of security construction in electronic government affair of Tianjin comes into being according to the actual security construction destination of Tianjin, which includes the design of network security ,the design of security infrastructure ,the design of security in application system, the foundation of security management and the system of security management.
引文
[1] 国家经济贸易委员会办公厅电子政务课题组,电子政务实用读本,北京:中共中央党校出版社,2002
[2] 汪玉凯、赵国俊,电子政务基础,北京:中软电子出版社,2002
[3] 徐晓林、杨兰蓉,电子政务导论,武汉:武汉出版社、科学出版社,2002
[4] 首都之窗:http://www.beijing.gov.cn
[5] 陈彦学,信息安全理论与实务,北京:中国铁道出版社,2001
[6] Bruce Schneier,网络与信息安全技术丛书——网络信息安全的真相,北京:机械工业出版社,2001
[7] Rebecca Gurley Bace,信息与网络安全丛书——入侵检测,北京:人民邮电出版社,2001
[8] 杨波,网络安全理论与应用,北京:电子工业出版社,2001
[9] 杨辉、吴昊,防火墙——网络安全解决方案,北京:国防工业出版社,2001
[10] William Stallings,密码编码学与网络安全:原理与实践(第二版),北京:电子工业出版社,2001
[11] Grant, Gail L.. Understanding Digital Signatures:Establishing Trust over the Internet and Other Networks,Computing McGraw-Hill,1997
[12] B.Howard,O.Paridaens, B.Gamm,Information Security:Threats and Protection Mechanisms . Alcatel Telecommunications Review, 2001
[13] SmartPipes,Inc. IPSec-Based VPNS. 2001
[14] Char Sample,Mike Nickle and Lan Poynter, Firewall and IDS Shortcomings. SANS Network Security,October 2000
[15] Cisco Systems Inc.. Web-Site Security and Denial-of-Service Protection. 2000
[16] Douglas E.Comer、David L. Stevens. Internetworking with TCP/IP. 清华大学出版社,Prentice Hall,1998
[17] Ford Warwick and Baum Michael , Secure Electronic Commerce:Building the Infrastructure for Digital Signatures Encryption. Prentice Hall Press, April 1997
[18] Stinson D. Cryptography:Theory and Practice. CRC Press, 1995
[19] 姚国章编著,电子政务基础与应用,北京:北京大学出版社,2002
[20] Garfinkel Simon and Gene Spafford. Web Security & Commerce. O’Reilly & Associates Inc., 1997
[21] Paridaens, B.Gamm, B.Howard. Securing IP Networking Architecures. Alcatel Telecommunications Review, 2001
[22] 陈兵、王立松、钱红燕,网络安全与电子商务,北京:北京大学出版社,2002
[23] 陈兵等,网络安全体系结构研究,计算机工程与应用,2002,4:20~24
[24] 谢希仁,计算机网络(第二版),大连:大连理工大学出版社,1996
[25] (美)坦尼伯姆(Tanenbaum,A.S),计算机网络(第3版),北京:清华大学出版社,1996
[26] (美)Derek Atkins著,严伟、刘晓丹、王千祥等译,Internet网络安全专业参考手册,北京:机械工业出版社,1998
[27] (美)Chris Hare、Karanjit Siyan著,刘成勇、刘明刚、王明举等译,Internet防火墙与网络安全,北京:机械工业出版社,1998
[28] 许锦波、严望佳,Internet/Intranet网络安全结构设计,北京:清华大学出版社,1999
[29] 卢开澄,计算机密码学——计算机网络中的数据保密与安全(第2版),北京:清华大学出版社,1998
[30] 耿冲主编,SQL Server 2000数据库原理,北京:机械工业出版社,2001
[31] 樊成丰、林东,网络信息安全&PGP加密,北京:清华大学出版社,1998
[32] 段素娟、王文钦,计算机安全与保密技术,北京:北京希望电脑公司,1990
[33] 楚狂等,网络安全与防火墙技术,北京:人民邮电出版社,2000
[34] 陈兵、钱红燕、王立民等,电子政务技术与安全,北京大学出版社,2003
[35] 朱运喜,网络安全技术及其发展,信息化建设,2002,2:10~13
[36] 陈向民,政府信息化建设中电子政务建设研究:[硕士学位论文],天津:天津大学,2001
[37] 黄叶德,广西电子政务网安全解决方案研究:[硕士学位论文],成都:四川大学,2002
[38] 白跃彬,网络安全若干关键技术研究:[硕士学位论文],西安:西安交通大学,2001
[39] (美)Thomas A.Wadlow著,网络安全实施方法,人民邮电出版社,2000
[40] (美)Merike Kaeo著,网络安全性设计,北京:人民邮电出版社,2000
[2] 汪玉凯、赵国俊,电子政务基础,北京:中软电子出版社,2002
[3] 徐晓林、杨兰蓉,电子政务导论,武汉:武汉出版社、科学出版社,2002
[4] 首都之窗:http://www.beijing.gov.cn
[5] 陈彦学,信息安全理论与实务,北京:中国铁道出版社,2001
[6] Bruce Schneier,网络与信息安全技术丛书——网络信息安全的真相,北京:机械工业出版社,2001
[7] Rebecca Gurley Bace,信息与网络安全丛书——入侵检测,北京:人民邮电出版社,2001
[8] 杨波,网络安全理论与应用,北京:电子工业出版社,2001
[9] 杨辉、吴昊,防火墙——网络安全解决方案,北京:国防工业出版社,2001
[10] William Stallings,密码编码学与网络安全:原理与实践(第二版),北京:电子工业出版社,2001
[11] Grant, Gail L.. Understanding Digital Signatures:Establishing Trust over the Internet and Other Networks,Computing McGraw-Hill,1997
[12] B.Howard,O.Paridaens, B.Gamm,Information Security:Threats and Protection Mechanisms . Alcatel Telecommunications Review, 2001
[13] SmartPipes,Inc. IPSec-Based VPNS. 2001
[14] Char Sample,Mike Nickle and Lan Poynter, Firewall and IDS Shortcomings. SANS Network Security,October 2000
[15] Cisco Systems Inc.. Web-Site Security and Denial-of-Service Protection. 2000
[16] Douglas E.Comer、David L. Stevens. Internetworking with TCP/IP. 清华大学出版社,Prentice Hall,1998
[17] Ford Warwick and Baum Michael , Secure Electronic Commerce:Building the Infrastructure for Digital Signatures Encryption. Prentice Hall Press, April 1997
[18] Stinson D. Cryptography:Theory and Practice. CRC Press, 1995
[19] 姚国章编著,电子政务基础与应用,北京:北京大学出版社,2002
[20] Garfinkel Simon and Gene Spafford. Web Security & Commerce. O’Reilly & Associates Inc., 1997
[21] Paridaens, B.Gamm, B.Howard. Securing IP Networking Architecures. Alcatel Telecommunications Review, 2001
[22] 陈兵、王立松、钱红燕,网络安全与电子商务,北京:北京大学出版社,2002
[23] 陈兵等,网络安全体系结构研究,计算机工程与应用,2002,4:20~24
[24] 谢希仁,计算机网络(第二版),大连:大连理工大学出版社,1996
[25] (美)坦尼伯姆(Tanenbaum,A.S),计算机网络(第3版),北京:清华大学出版社,1996
[26] (美)Derek Atkins著,严伟、刘晓丹、王千祥等译,Internet网络安全专业参考手册,北京:机械工业出版社,1998
[27] (美)Chris Hare、Karanjit Siyan著,刘成勇、刘明刚、王明举等译,Internet防火墙与网络安全,北京:机械工业出版社,1998
[28] 许锦波、严望佳,Internet/Intranet网络安全结构设计,北京:清华大学出版社,1999
[29] 卢开澄,计算机密码学——计算机网络中的数据保密与安全(第2版),北京:清华大学出版社,1998
[30] 耿冲主编,SQL Server 2000数据库原理,北京:机械工业出版社,2001
[31] 樊成丰、林东,网络信息安全&PGP加密,北京:清华大学出版社,1998
[32] 段素娟、王文钦,计算机安全与保密技术,北京:北京希望电脑公司,1990
[33] 楚狂等,网络安全与防火墙技术,北京:人民邮电出版社,2000
[34] 陈兵、钱红燕、王立民等,电子政务技术与安全,北京大学出版社,2003
[35] 朱运喜,网络安全技术及其发展,信息化建设,2002,2:10~13
[36] 陈向民,政府信息化建设中电子政务建设研究:[硕士学位论文],天津:天津大学,2001
[37] 黄叶德,广西电子政务网安全解决方案研究:[硕士学位论文],成都:四川大学,2002
[38] 白跃彬,网络安全若干关键技术研究:[硕士学位论文],西安:西安交通大学,2001
[39] (美)Thomas A.Wadlow著,网络安全实施方法,人民邮电出版社,2000
[40] (美)Merike Kaeo著,网络安全性设计,北京:人民邮电出版社,2000