涉密载体全生命周期管理原型系统的设计与实现

发布时间：2018-03-09 03:11

本文选题：涉密载体　切入点：全生命周期　出处：《中国科学院大学（工程管理与信息技术学院）》2015年硕士论文　论文类型：学位论文

【摘要】：随着信息化技术的发展,电子政务、办公自动化等信息技术应用中的信息处理、传递、交互过程越来越多地依赖于多种有形的信息载体进行,如何有效地管控各类有形信息载体,降低载体使用安全风险,成为信息安全领域迫切需要研究的课题。本项目对涉密载体全生命周期管理中的两类主流有形信息载体(纸介质、光盘)的使用与管控问题进行分析,重点探讨实现涉密载体安全使用与管控的技术途径,设计并实现一个涉密载体全生命周期管理原型系统,旨在全面分析涉密载体安全管控需求,为涉密载体全生命周期安全管控提供有效的技术支持与工具支撑。对于目前军队、政府部门、涉密单位的涉密载体管理具有非常重要的应用价值与指导意义。论文的主要工作具体如下：涉密载体管理系统的需求分析一个管理系统的有效开发离不开详细、系统的需求分析。在分析涉密载体管理现状与现存安全隐患的基础上,提出涉密载体全生命周期管理系统总体设计目标,分析系统的功能需求及非功能性需求,为后续系统的设计与实现打下基础,也为系统的有效性验证提供了依据。涉密载体身份识别与访问控制技术研究结合涉密载体全生命周期管理实际的需求,对系统应用到的二维码技术、DES加解密技术、打印监控技术等三种关键技术进行详细分析,并对三种技术在管理系统中的应用与实现进行研究,关键技术的研究对后续管理系统的详细设计及实现打下了基础。涉密载体管理原型系统的总体架构设计管理系统总体架构设计采用基于消息总线的分布式软件体系架构,实现应用与服务的分离。数据库采用Server2008,按照数据库概念设计、逻辑结构设计的思路进行数据库设计,为后续系统开发建立了数据结构基础。涉密载体管理原型系统的开发与实现系统是载体管控技术实用化的必要条件,本项目管理系统采用CS、BS目结合的方式进行软件开发,本着友好、易用的原则进行界面设计,利用流程控制的思想设计各个工作流程,按照系统需求分析完成了管理系统的四个功能模块的开发与实现。
[Abstract]:With the development of information technology, the process of information processing, transmission and interaction in the application of information technology, such as e-government, office automation and so on, is more and more dependent on a variety of tangible information carriers. How to effectively control all kinds of tangible information carriers and reduce the risk of using them has become an urgent research topic in the field of information security. The use and control of CD) are analyzed, and the technical ways to realize the safe use and control of the secret carrier are discussed, and a prototype system of the whole life cycle management of the secret carrier is designed and implemented. The purpose of this paper is to comprehensively analyze the security control requirements of the secret carrier, and provide effective technical support and tool support for the security control of the whole life cycle of the secret carrier. The carrier management of secret units has very important application value and guiding significance. The main work of this paper is as follows:. Requirement Analysis of Confidential Carrier Management system. The effective development of a management system can not be separated from the detailed and systematic requirement analysis. On the basis of analyzing the current situation of the management of the secret carrier and the existing hidden dangers of security, the overall design goal of the whole life cycle management system of the secret carrier is put forward. The analysis of the functional and non-functional requirements of the system lays a foundation for the design and implementation of the subsequent system and provides a basis for the verification of the effectiveness of the system. Research on identity Identification and access Control Technology of Secrets Carrier. Combined with the actual requirement of the whole life cycle management of the secret carrier, the paper analyzes in detail three key technologies, such as the two-dimension code technology, the encryption and decryption technology and the printing and monitoring technology, which are applied in the system. The application and realization of the three technologies in the management system are studied. The research of the key technology lays a foundation for the detailed design and implementation of the follow-up management system. General Architecture Design of Confidential Carrier Management prototype system. The overall architecture design of the management system is based on the distributed software architecture based on message bus, which realizes the separation of application and service. The database adopts Server 2008, and the database is designed according to the concept of database and logic structure. The data structure foundation is established for the subsequent system development. Development and implementation of a prototype system for Confidence-Related Carrier Management. The system is a necessary condition for the practical application of carrier control technology. The project management system adopts the method of combining CSB and BS for software development, carries out interface design based on friendly and easy-to-use principle, and designs each workflow using the idea of flow control. According to the system requirement analysis, the development and implementation of the four functional modules of the management system are completed.
【学位授予单位】：中国科学院大学（工程管理与信息技术学院）
【学位级别】：硕士
【学位授予年份】：2015
【分类号】：TP311.52

【参考文献】