民机企业信息安全体系设计与实现
发布时间:2018-07-28 13:44
【摘要】:我国的民机产业发展采用“主制造商-供应商”模式。在这种模式下,传统的飞机制造商角色变成“大规模供应链集成商”。如何将一个全球分散的设计和制造商团队整合到一个高度复杂和组织严密的信息系统平台上,实时协同开展工作,是信息化工作人员面临的重大课题。 本文的主要工作隶属863课题(课题编号2009AA044601)“面向大型客机全球化协同研制的信息安全体系”项目内容,且设计成果已在本人所在单位“中国商用飞机有限责任公司”实施运用,并取得了良好的效果。 本文依据单位发展战略及信息化战略规划,参照信息安全标准及行业研究相关成果,通过对信息安全保障环节P2DR模型及访问控制模型进行研究,采用PDCA循环模型方法论开展现状与需求分析,基于总体安全技术框架规划,从层次化的网络结构、终端安全、统一的安全管理、公钥基础设施架构几方面进行设计,设计中突出的P2DR环节的工作关系;同时基于业务应用的特点,针对应用协同访问控制进行了设计与扩展,,为公司初步建立起一套具备民机企业特点的信息安全体系,实现了预期的工作目标。最后,就进一步工作的方向进行了简要的描述。
[Abstract]:The development of civil aircraft industry in China adopts the mode of "main manufacturer-supplier". In this mode, the traditional role of aircraft manufacturer becomes "large supply chain integrator". How to integrate a global distributed design and manufacturing team into a highly complex and tightly organized information system platform and work in real time cooperation is an important task for information workers. The main work of this paper belongs to 863 project (subject number 2009AA044601) "Information security system for large-scale passenger aircraft globalization and development" project, and the design results have been implemented in my unit, "China Commercial aircraft Co., Ltd." Good results have been obtained. In this paper, according to the development strategy and information strategic planning of the unit, referring to the information security standards and industry research results, through the information security link P2DR model and access control model are studied. The current situation and requirement analysis is carried out with the methodology of PDCA cycle model. Based on the overall security technology framework planning, the design is carried out from the aspects of hierarchical network structure, terminal security, unified security management, public key infrastructure, etc. At the same time, based on the characteristics of business application, the paper designs and extends the application cooperative access control, and establishes a set of information security system with the characteristics of civil aircraft enterprises for the company. The expected work goal has been achieved. Finally, the direction of further work is briefly described.
【学位授予单位】:上海交通大学
【学位级别】:硕士
【学位授予年份】:2014
【分类号】:TP309
本文编号:2150334
[Abstract]:The development of civil aircraft industry in China adopts the mode of "main manufacturer-supplier". In this mode, the traditional role of aircraft manufacturer becomes "large supply chain integrator". How to integrate a global distributed design and manufacturing team into a highly complex and tightly organized information system platform and work in real time cooperation is an important task for information workers. The main work of this paper belongs to 863 project (subject number 2009AA044601) "Information security system for large-scale passenger aircraft globalization and development" project, and the design results have been implemented in my unit, "China Commercial aircraft Co., Ltd." Good results have been obtained. In this paper, according to the development strategy and information strategic planning of the unit, referring to the information security standards and industry research results, through the information security link P2DR model and access control model are studied. The current situation and requirement analysis is carried out with the methodology of PDCA cycle model. Based on the overall security technology framework planning, the design is carried out from the aspects of hierarchical network structure, terminal security, unified security management, public key infrastructure, etc. At the same time, based on the characteristics of business application, the paper designs and extends the application cooperative access control, and establishes a set of information security system with the characteristics of civil aircraft enterprises for the company. The expected work goal has been achieved. Finally, the direction of further work is briefly described.
【学位授予单位】:上海交通大学
【学位级别】:硕士
【学位授予年份】:2014
【分类号】:TP309
【参考文献】
相关期刊论文 前10条
1 黄元飞;;国内外网络与信息安全现状[J];电信技术;2006年05期
2 李凤华;苏斢;史国振;马建峰;;访问控制模型研究进展及发展趋势[J];电子学报;2012年04期
3 熊辉;;层次化的网络设计与实现[J];航空计算技术;2007年03期
4 韩道军;高洁;翟浩良;李磊;;访问控制模型研究进展[J];计算机科学;2010年11期
5 刘建生;彭行顺;;访问控制模型研究综述[J];计算机与数字工程;2010年07期
6 娄燕强;宋如顺;;E-P2DR3安全模型在银行信息系统中的应用[J];计算机测量与控制;2010年02期
7 黄泽斌;;基于P2DR模型的安全解决方案研究[J];科技信息(科学教研);2007年29期
8 袁韵涛;;基于角色的访问控制模型研究[J];软件导刊;2012年04期
9 黄勇;;基于P2DR安全模型的银行信息安全体系研究与设计[J];信息安全与通信保密;2008年06期
10 冯登国 ,张阳 ,张玉清;信息安全风险评估综述[J];通信学报;2004年07期
本文编号:2150334
本文链接:https://www.wllwen.com/guanlilunwen/gongyinglianguanli/2150334.html
