CN1561068A - System structure of integrated practicing plat form of information safety engineering - Google Patents
System structure of integrated practicing plat form of information safety engineering Download PDFInfo
- Publication number
- CN1561068A CN1561068A CNA2004100167114A CN200410016711A CN1561068A CN 1561068 A CN1561068 A CN 1561068A CN A2004100167114 A CNA2004100167114 A CN A2004100167114A CN 200410016711 A CN200410016711 A CN 200410016711A CN 1561068 A CN1561068 A CN 1561068A
- Authority
- CN
- China
- Prior art keywords
- layer
- security
- service
- application
- safety
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Abstract
An information safety engineering combined practice platform system includes the following five layers: an basic facility layer, a safety service function layer, a safety service management layer, an application layer and a user management layer, among which, the basic facility layer is the lowest one of the platform structure connected with the service function above it via hardware interface, the safety service management layer connected with the function layer downward is the core of the system connected with the application layer via the general service interface which is above the service management layer and the user manage layer is linked to the application layer via a man-machine interface characterizing: 1. opening structure, 2. extendable, 3. multifunction integration 4. forming itself complete safeguard system.
Description
Technical field
The present invention relates to be used for field of information security technology.Be the architecture that a kind of information security engineering comprehensive is put into practice platform specifically.
Background technology
The distinct issues in current information security fields are: the information security industry development seriously lags behind, and information security scientific research and education are serious to lag behind, and key is to have lacked a comprehensive integrated practice environment, and there is a serious shortage in the supply to make the information security talent.
Information security has developed into comprehensive, a cross subject field, and the information security talent not only will have very strong knowwhy background, and superb practice technology will be arranged.Yet, because the experiment of information security aspect may have harmfulness, can not in the environment of reality, carry out, thus need one have multi-functional, can utilize information security each side resource to carry out the engineering practice platform of comprehensive experiment.
At present, the platform of putting into practice that has occurred the variety of information secure context at home and abroad.Find by literature search, Chinese patent application number 01132350.7, patent name: based on the electronic government affairs safety platform system of trusting with authorization service, this patent introduction be a kind of plateform system at government affairs transaction aspect.Yet, at information security field, at present domestic and international current experiments platform, mainly be research or the detection type platform of setting up at the test of the scientific research of a certain safe practice or some safety products based on simple function, these platforms have the following disadvantages: 1. based on simple function, in a platform, can only carry out experiment in a certain respect in the information security; 2. structure is not open, so can not carry out increased functionality according to particular requirement; 3. do not consider the safety of platform self, perfect inadequately to the protection of platform internal information.So current at information security field, also there is not to carry out the engineering practice platform of comprehensive comprehensive experiment.
Summary of the invention
The objective of the invention is to put into practice the deficiency of platform at the existing information safety engineering, a kind of architecture that multi-functional information security engineering comprehensive is put into practice platform that has has been proposed, it is required with experiment to make it satisfy a plurality of direction engineering practices of information security field, can support the related side to functions such as engineering practice teaching, socialization training, scientific research and system level testing, and can guarantee the fail safe of platform self.
The present invention realizes that by following technical scheme the present invention is a kind of hierarchy, comprises following five layers from the bottom to top: infrastructure layer, security service functional layer, security services manager, application layer and user management layer.Infrastructure layer is minimum one deck of platform architecture, is connected with the security service functional layer by hardware interface; The security service functional layer is structured on the infrastructure layer, is connected with infrastructure layer by hardware interface downwards, upwards provides interface to be connected with the security service functional layer by service; Security services manager is the core of whole architectural framework, is connected with application layer by Universal Service Interface; Application layer is based on the security services manager, is connected with security service pipe buried regions by Universal Service Interface; The user management layer then is to get in touch by man-machine interface and application layer.
Wherein in three layers of security service functional layer, security services manager and application layers, be divided into application-oriented again and towards the management two parts, application-oriented part obtains service to finish concrete application by hardware interface from infrastructure layer, then obtain service from infrastructure layer towards administrative section and realize concrete management function by hardware interface, directly do not connect between these two parts, but produced contact by infrastructure layer, become and managed and manage two roles.
Below the invention will be further described, concrete is described below:
1. infrastructure layer:
Infrastructure layer is meant the particular hardware in the network composition and relates to the miscellaneous equipment of safety management, the whole hardware devices that comprise platform, constitute the hardware platform in the platform, this layer is connected with the security service functional layer by hardware interface, directly provides service for the security service functional layer.
2. security service functional layer:
The security service functional layer is connected with infrastructure layer by hardware interface downwards, realizes the operation to hardware of basic security service and function, has so just shielded the particular hardware in the infrastructure layer for security services manager.Provide interface to connect by service on this course to security services manager.Various services that provide for security services manager in this layer and function all are to finish by the plug-in unit in this layer.These plug-in units comprise safety insert module and equipment card module, the safety insert module is positioned at application-oriented part, the equipment card module then is positioned at towards administrative section, does not directly connect between these two parts, and the contact between them is to realize by infrastructure layer.The safety insert module refers to secure context rudimentary algorithm module, various basic security services are provided, the corresponding service of safety insert module, these safety insert modules provide the application-oriented part of interface in security services manager that service is provided by service.With the form of this plug-in unit, the user can increase and decrease the basic security service that platform provides by the number that increases and decreases safe inserted block module easily and flexibly.The equipment card module is on particular hardware, adopt the mode of driver to extract and equipment corresponding hardware pattern and DLL (dynamic link library), provide interface in security services manager, to provide service by service towards administrative section, in this layer inside, the corresponding equipment card module of equipment, but, to use a kind of interface to the device just of same type, and not need to consider equipment vendors and model from the upper strata.
3. security services manager:
Security services manager is the core of whole architectural framework, the main management of being responsible for all card modules in the security service functional layer, and provide unified Universal Service Interface for application layer, it seems from application layer, as long as just can obtain the security service of various higher levels by Universal Service Interface, and do not need to be concerned about the details that these security services realize and relate to which concrete equipment when realizing, for example, concerning application layer, obtain different encryption and decryption services, only need by the service of calling of unified Universal Service Interface just can, nor need to consider that these service reality are finished by that main frame.
In the application-oriented part of security services manager, comprise the safety insert administration module and with the security service functional layer in the security service module of the corresponding unified higher level of safety insert module, wherein the safety insert administration module is responsible for providing interface to be connected with the security service functional layer by service, realization is to management, interpolation and the deletion of security service functional layer safety insert, and the information of these safety inserts offered security service module in this layer, allow these security service module be that application layer generates Universal Service Interface.This layer in administrative section, comprise equipment plug-in management module and with the corresponding various device model of security service functional layer equipment plug-in unit.Wherein equipment plug-in management module is responsible for the equipment card module of security service functional layer is managed, information and parameter according to these card modules are carried out modeling, produce device model, the corresponding a kind of model of one kind equipment, all models all are to be represented by some data structures and algorithm, just can provide and the irrelevant security service of device type to the upper strata by unique Universal Service Interface then according to these data structures and algorithm.
Can see that the card module in the security service functional layer is managed by corresponding administration module in the security services manager respectively, and then provides unified service and management interface to the upper strata, realizes unified management.
4. application layer:
Application layer is based on the security services manager, and this layer is the composition of all concrete Secure Application, comprises Secure Application system and safety management system two parts.Wherein the Secure Application system is positioned at application-oriented part, safety management system then is positioned at towards administrative section, directly do not connect between these two parts, but because platform in application-oriented part with all be to be on the identical infrastructure layer towards administrative section, so the contact between safety management system and the Secure Application system is to set up by infrastructure layer.The Secure Application system has embodied the notion of application-centered safety management, and by the execution of security strategy, control safety is effectively done the operation of application systems such as worker, content safety monitoring, makes that user's information is effectively protected in concrete the application; Safety management system focus on management to customer security incident, provide to the user with different safe modes.Application module in the application layer can use the security service of lower module by Secure Application interfaces such as system call or dynamic link libraries, and does not need to be concerned about the detail of lower module.
5. user management layer:
The user management layer is realized the management to platform user, legal users, is directed to application-oriented part in the application layer or towards the man-machine interface of administrative section according to its authority.In this layer by based on the PKI of certificate, based on the symmetric cryptography of usemame/password, based on the Hash operation of usemame/password or reach user's authentication based on the USB card, then on the basis of PKI, provide user identity to the mapping function of use authorizing by PMI, realize corresponding with the practical application tupe, with concrete application system development and the irrelevant access control mechanisms of management.Like this, all users that enter platform must be through authentication, and can be subjected to control of authority in platform, and therefore, the user management layer has been set up the security control between platform is inside and outside.
Because the structure of this platform is open, and all be modular in every layer, so can be according to particular requirement, by certain layer or certain functional module being upgraded or directly being increased enhancing and the expansion that functional module comes platform is carried out function, the function of platform just can constantly be upgraded and be expanded like this, continues to bring out the variation that causes practical environment to require to adapt to because of the information security field new technology.Simultaneously, in such architecture, the resource of lower floor can provide to a plurality of modules in upper strata, reaches different resource and shares, the purpose of working in coordination and utilizing.
The architecture that proposes by the present invention makes up the information security engineering comprehensive and puts into practice platform, has following feature: open structure, and extensibility, multi-functional integrated, form self complete security system, resource-sharing between different system.
Description of drawings
Fig. 1 is the layering logical model figure that the information security engineering comprehensive is put into practice platform
Fig. 2 is the efficient public security system composition diagram that the information security engineering comprehensive is put into practice platform
Embodiment
Below in conjunction with accompanying drawing the information security engineering comprehensive among the present invention being put into practice platform architecture further specifies:
As shown in Figure 1, totally five layers from the bottom to top on this platform, concrete is described below:
1. infrastructure layer:
Infrastructure layer is minimum one deck of architecture, is meant particular hardware and the miscellaneous equipment that relates to safety management in the network composition, comprises whole hardware devices of platform, constitutes the hardware platform in the platform.This layer is connected with the security service functional layer by hardware interface, directly provides service for the security service functional layer.As shown in Figure 1, comprising all hardware devices such as distributed main frame, local host, Hub, fire compartment wall, safe gateway, router, vpn gateway, scanner, IDS, server, router, switch, is the essence supplier of security service in the platform.
2. security service functional layer:
The security service functional layer is connected with infrastructure layer by hardware interface downwards, realizes the operation to hardware of basic security service and function, has so just shielded the particular hardware in the infrastructure layer for security services manager.Provide interface to connect by service on this course to security services manager.Various services that provide for security services manager in this layer and function all are to finish by the plug-in unit in this layer.As shown in Figure 1, these plug-in units comprise safety insert module and equipment card module, and the safety insert module is positioned at application-oriented part, and the equipment card module then is positioned at towards administrative section, directly do not connect between these two parts, the contact between them is to realize by infrastructure layer.The safety insert module refers to secure context rudimentary algorithm module, various basic security services are provided, as: the des encryption service, the AES cryptographic services, the DES decryption services, key generates service, digital signature service and authentication calculations service etc., the corresponding service of safety insert module, in Fig. 1, in order to represent conveniently, represent a plurality of card modules with an arrow, as the encryption and decryption card module among the figure, what represent is the des encryption card module, AES encrypts card module, DES deciphering card module etc., these safety insert modules provide interface to provide service to the upper strata by service, the basic service that interface is corresponding one type with regard to cryptographic algorithm for example, is the cryptographic services of the sort of algorithm no matter the user will obtain, DES or AES etc. are as long as call by same interface.With the form of this plug-in unit, the user can increase and decrease the basic security service that platform provides by the number that increases and decreases safe inserted block module easily and flexibly.The equipment card module is on particular hardware, adopt the mode of driver to extract and equipment corresponding hardware pattern and DLL (dynamic link library), and then provide interface to provide service to the upper strata by service, in this layer inside, an equipment card module of a corresponding infrastructure layer of equipment, just corresponding as two fire compartment wall card modules with two fire compartment walls, but from the upper strata, device just to same type will be used a kind of interface, and do not need to consider equipment vendors and model, for example, all fire compartment walls are all used same interface, all-router is then used another unified interface, that is to say, the security service functional layer is manufacturer's independence that equipment has been realized on the upper strata.
3. security services manager:
Security services manager is the core of whole architectural framework, provides interface to be connected with the security service functional layer by service downwards, upwards is connected with application layer by Universal Service Interface.This layer mainly is responsible for the management of all card modules in the security service functional layer, and provide unified Universal Service Interface for application layer, it seems from application layer, as long as just can obtain the security service of various higher levels by Universal Service Interface, and do not need to be concerned about the details that these security services realize and relate to which concrete equipment when realizing, for example, concerning application layer, obtain different encryption and decryption services, only need by the service of calling of unified Universal Service Interface just can, nor need to consider that these service reality are finished by that main frame.And this layer also can carry out modeling to the equipment card module to the security service functional layer, the corresponding a kind of model of one kind equipment, all models all are to be represented by some data structures and algorithm, as shown in Figure 1, firewall model in this layer is corresponding with a plurality of fire compartment wall card modules of security service functional layer, the switch model is corresponding with a plurality of switch card modules, and then, provide and the irrelevant security service of device type to the upper strata by unique Universal Service Interface according to these data structures and algorithm.
4. application layer:
Application layer is based on the security services manager, upwards then comes to provide service to the validated user through user management layer authentication and control of authority by man-machine interface.This layer is the composition of all concrete Secure Application, comprises Secure Application system and safety management system two parts.Wherein the Secure Application system is positioned at application-oriented part, safety management system then is positioned at towards administrative section, directly do not connect between these two parts, but because platform in application-oriented part with all be to be on the identical infrastructure layer towards administrative section, so the contact between safety management system and the Secure Application system is to set up by infrastructure layer.The Secure Application system has embodied the notion of application-centered safety management, execution by security strategy, control the operation of various application effectively, make in concrete the application, user's information is effectively protected, as shown in Figure 1, these application comprise: safe office, protocol verification, video content monitoring, content of multimedia authentication, picture material monitoring, classification contents monitoring, content of text monitoring etc.; Safety management system focus on management to customer security incident, provide to the user with no safe mode, as shown in Figure 1, this part comprises: safety means management, safety experiment resource management, security audit, attacking and defending, intrusion detection, security sweep etc.Application module in the application layer can use the security service of lower module by Secure Application interfaces such as system call or dynamic link libraries, and does not need to be concerned about the detail of lower module.
5. user management layer:
The user management layer is realized the management to platform user, legal users, is directed to application-oriented part in the application layer or towards the man-machine interface of administrative section according to its authority.As shown in Figure 1, by based on the PKI of certificate, based on the symmetric cryptography of usemame/password, based on the Hash operation of usemame/password or reach user's authentication based on the USB card, then on the basis of PKI, provide user identity to the mapping function of use authorizing by PMI, realize corresponding with the practical application tupe, with concrete application system development and the irrelevant access control mechanisms of management.Like this, all users that enter platform must be through authentication, and in platform, can be subjected to control of authority, as shown in Figure 1, through authentication, the user is divided into and trusts two kinds of user and keepers, and obtains different authorities, therefore, the user management layer has been set up the security control between platform is inside and outside.
The efficient public security system composition diagram of information as shown in Figure 2, platform of the present invention (can referring to Fig. 1) is divided by function of safety protection, is divided into six big classes, the nineteen subsystem:
1. foundation for security supports
● the security protocol verification system
● cryptographic system
2. secure network is isolated
● the safety net brake system
● firewall system
● vpn system
3. safety detection protection
● the attacking and defending system
● the security sweep system
● intruding detection system
4. safe access control
● the PMI system
● the PKI system
5. secure content monitoring
● the content of multimedia Verification System
● the text content filtering system
● the classification contents supervisory systems
● the video content supervisory control system
● the picture material supervisory control system
6. comprehensive safety management
● safe office system
● the safety experiment resource management system
● safety management system
● safety auditing system (desktop supervisory systems)
Horizontal all subsystems have constituted the security assurance information system that supports to comprehensive safety management from foundation for security among the figure, substantially the various aspects of information security have been covered, the training, the teaching and scientific research experimental situation that provide from platform, it is complete function, from the security standpoint of platform itself, be that safety guarantee is perfect.
Good engineering practice platform has critical role to training, experiment and the scientific research of information security field, the information security integration engineering that proposes in according to the present invention is put into practice the architecture of platform, construct put into practice platform be with good expansibility, multi-functional, layering ensures safety and the characteristics of different system resource-sharing, can promote the development of information security field, have great social significance.
Claims (8)
1, a kind of information security engineering comprehensive is put into practice the architecture of platform, comprise: the security service functional layer, security services manager, application layer, it is characterized in that also comprising: infrastructure layer, the user management layer, annexation is: infrastructure layer, the security service functional layer, security services manager, application layer and user management layer are provided with from the bottom to top, infrastructure layer is minimum one deck of platform architecture, be connected with the security service functional layer by hardware interface, the security service functional layer is structured on the infrastructure layer, be connected with infrastructure layer by hardware interface downwards, upwards provide interface to be connected with the security service functional layer by service, security services manager is the core of whole architectural framework, is connected with application layer by Universal Service Interface, and application layer is based on the security services manager, be connected with security service pipe buried regions by Universal Service Interface, the user management layer then is to get in touch by man-machine interface and application layer.
2, information security engineering comprehensive according to claim 1 is put into practice the architecture of platform, it is characterized in that, in the security service functional layer, in three layers of security services manager and the application layers, be divided into application-oriented again and towards the management two parts, application-oriented part obtains service to finish concrete application by hardware interface from infrastructure layer, then obtain service from infrastructure layer towards administrative section and realize concrete management function by hardware interface, independent separately between these two parts, but produced contact by infrastructure layer, become and managed and manage two roles.
3, information security engineering comprehensive according to claim 1 and 2 is put into practice the architecture of platform, it is characterized in that, the security service functional layer is connected with infrastructure layer by hardware interface downwards, realize the operation of basic security service and function to hardware, so just shielded the particular hardware in the infrastructure layer for security services manager, service that provides for security services manager in this layer and function all are to finish by plug-in unit, these plug-in units comprise safety insert module and equipment card module, the safety insert module is positioned at application-oriented part, the equipment card module then is positioned at towards administrative section, contact between these two parts is to realize by infrastructure layer, the safety insert module refers to secure context rudimentary algorithm module, various basic security services are provided, the corresponding service of safety insert module, these safety insert modules provide the application-oriented part of interface in security services manager that service is provided by service, the equipment card module is on particular hardware, adopt the mode of driver to extract and equipment corresponding hardware pattern and DLL (dynamic link library), provide interface in security services manager, to provide service by service towards administrative section, in this layer inside, the corresponding equipment card module of equipment, but, to use a kind of interface to the device just of same type from the upper strata.
4, information security engineering comprehensive according to claim 1 and 2 is put into practice the architecture of platform, it is characterized in that, security services manager mainly is responsible for the management of all card modules in the security service functional layer, and provide unified Universal Service Interface for application layer, in the application-oriented part of security services manager, comprise the safety insert administration module and with the security service functional layer in the corresponding unified security service module of safety insert module, wherein the safety insert administration module is responsible for providing interface to be connected with the security service functional layer by service, realization is to the management of security service functional layer safety insert, add and deletion, and the information of these safety inserts offered security service module in this layer, allow these security service module be that application layer generates Universal Service Interface; In administrative section, comprise equipment plug-in management module and with the corresponding various device model of security service functional layer equipment plug-in unit, wherein equipment plug-in management module is responsible for the equipment card module of security service functional layer is managed, information and parameter according to these card modules are carried out modeling, produce device model, the corresponding a kind of model of one kind equipment, all models all are to be represented by data structure and algorithm, according to these data structures and algorithm, provide security service to the upper strata then by unique Universal Service Interface.
5, information security engineering comprehensive according to claim 1 and 2 is put into practice the architecture of platform, it is characterized in that, application layer is based on the security services manager, it is the composition of all concrete Secure Application, comprise Secure Application system and safety management system two parts, wherein the Secure Application system is positioned at application-oriented part, safety management system then is positioned at towards administrative section, contact between the two is to set up by infrastructure layer, the Secure Application system controls the operation of application system effectively by the execution of security strategy; Safety management system focus on management to customer security incident, provide to the user with various safe modes, the application module in the application layer uses the security service of lower module by the Secure Application interface.
6, information security engineering comprehensive according to claim 1 is put into practice the architecture of platform, it is characterized in that, infrastructure layer, refer to particular hardware and the equipment that relates to safety management in the network composition, the whole hardware devices that comprise platform, constitute the hardware platform in the platform, this layer is connected with the security service functional layer by hardware interface, directly provides service for the security service functional layer.
7, information security engineering comprehensive according to claim 1 is put into practice the architecture of platform, it is characterized in that, the user management layer is realized the management to platform user, legal users, be directed to application-oriented part in the application layer or towards the man-machine interface of administrative section according to its authority, pass through PKI in this layer based on certificate, symmetric cryptography based on usemame/password, based on the Hash operation of usemame/password or reach user's authentication based on the USB card, then on the basis of PKI, provide user identity to using the mapping of authorizing by PMI, realize and the corresponding access control mechanisms of practical application tupe that the user management layer has been set up the security control between platform is inside and outside.
8, information security engineering comprehensive according to claim 1 is put into practice the architecture of platform, it is characterized in that, divides by function of safety protection, is divided into six big classes, the nineteen subsystem:
(1) foundation for security supports: comprise security protocol verification system, cryptographic system;
(2) secure network is isolated: comprise safety net brake system, firewall system, vpn system;
(3) safety detection protection: comprise attacking and defending system, security sweep system, intruding detection system;
(4) safe access control: comprise PMI system, PKI system;
(5) secure content monitoring: comprise content of multimedia Verification System, text content filtering system, classification contents supervisory systems, video content supervisory control system, picture material supervisory control system;
(6) comprehensive safety management: comprise safe office system, safety experiment resource management system, safety management system, safety auditing system.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2004100167114A CN100364303C (en) | 2004-03-04 | 2004-03-04 | System structure of integrated practicing plat form of information safety engineering |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2004100167114A CN100364303C (en) | 2004-03-04 | 2004-03-04 | System structure of integrated practicing plat form of information safety engineering |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN1561068A true CN1561068A (en) | 2005-01-05 |
| CN100364303C CN100364303C (en) | 2008-01-23 |
Family
ID=34440603
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNB2004100167114A Expired - Fee Related CN100364303C (en) | 2004-03-04 | 2004-03-04 | System structure of integrated practicing plat form of information safety engineering |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN100364303C (en) |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101043323B (en) * | 2007-03-13 | 2010-05-26 | 宁波大学 | Information safety service method facing to wireless mobile terminal |
| CN103107899A (en) * | 2011-11-10 | 2013-05-15 | 天津市国瑞数码安全系统有限公司 | Separation-of-three-powers hierarchical authorization management system and method thereof |
| CN103997483A (en) * | 2013-02-20 | 2014-08-20 | 联想(北京)有限公司 | Information safety control method and apparatus, and electronic device |
| CN109450938A (en) * | 2018-12-24 | 2019-03-08 | 科大国创软件股份有限公司 | A kind of cloud aggregation of data method for managing security and platform based on government affairs outer net |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105743915A (en) * | 2016-04-01 | 2016-07-06 | 深圳市创云方网络科技有限公司 | Authority management method and device |
Family Cites Families (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1288205A (en) * | 1999-09-14 | 2001-03-21 | 珠海市攀登科技有限公司 | Full compatible inter net electronic trade and payment system |
| US20020162026A1 (en) * | 2001-02-06 | 2002-10-31 | Michael Neuman | Apparatus and method for providing secure network communication |
| CN1352434A (en) * | 2001-11-29 | 2002-06-05 | 上海维豪信息安全技术有限公司 | Electronic government affairs safety platform system based on trust and authorization service |
-
2004
- 2004-03-04 CN CNB2004100167114A patent/CN100364303C/en not_active Expired - Fee Related
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101043323B (en) * | 2007-03-13 | 2010-05-26 | 宁波大学 | Information safety service method facing to wireless mobile terminal |
| CN103107899A (en) * | 2011-11-10 | 2013-05-15 | 天津市国瑞数码安全系统有限公司 | Separation-of-three-powers hierarchical authorization management system and method thereof |
| CN103997483A (en) * | 2013-02-20 | 2014-08-20 | 联想(北京)有限公司 | Information safety control method and apparatus, and electronic device |
| CN109450938A (en) * | 2018-12-24 | 2019-03-08 | 科大国创软件股份有限公司 | A kind of cloud aggregation of data method for managing security and platform based on government affairs outer net |
Also Published As
| Publication number | Publication date |
|---|---|
| CN100364303C (en) | 2008-01-23 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN1703867A (en) | Firewall | |
| CN1960255A (en) | Distributed access control method in multistage securities | |
| CN1863195A (en) | Family network system with safety registration function and method thereof | |
| CN105656903A (en) | Hive platform user safety management system and application | |
| Xu et al. | An autonomic agent trust model for IoT systems | |
| CN103152179A (en) | Uniform identity authentication method suitable for multiple application systems | |
| CN1731723A (en) | Electron/handset token dynamic password identification system | |
| CN103761600A (en) | Platform and method for e-government affair comprehensive application | |
| CA2578186A1 (en) | System and method for access control | |
| CN1913436A (en) | Method and apparatus for supporting mode-based access control | |
| CN1815946A (en) | Method for realizing digital information safety access | |
| CN101232424B (en) | Access method, access system, trust service center, network trust platform | |
| CN101067839A (en) | Interconnection network working software system antipirating method | |
| CN1889427A (en) | Safety star-shape local network computer system | |
| CN1561068A (en) | System structure of integrated practicing plat form of information safety engineering | |
| CN1716961A (en) | Method of providing resources with restricted access | |
| Yurcik et al. | Cluster security as a unique problem with emergent properties: Issues and techniques | |
| CN1700638A (en) | Enterprise network security access method by means of security authentication gateway | |
| CN102255870B (en) | Security authentication method and system for distributed network | |
| Kanwal et al. | Cloud computing security challenges: A review | |
| CN103905402A (en) | A secrecy safety management method based on security labels | |
| CN1194498C (en) | Content safe monitoring system based on digital label and its method | |
| CN1992714A (en) | Authority principal method based on trusted computing platform | |
| CN110708156B (en) | Communication method, client and server | |
| JP2006195755A (en) | Image input/output device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20080123 Termination date: 20200304 |
|
| CF01 | Termination of patent right due to non-payment of annual fee |