电子政务中身份认证系统的设计与实现软件工程专业论文.docxVIP

摘要 摘 要 进入新世纪以来，中国的科技水平迅猛前进，利用计算机网络办公已成为公 众服务机构的发展趋势。随着办公网络化的普及，人们开始关注电子政务系统的 安保问题。涉及到机关、工厂和个人的保密资料的电子政务系统，除黑客攻击、 病毒感染等来自网络的安全威胁外，也易受到来自系统应用的假冒使用者登录、 非法篡改等信息安全的危险，例如一些重要的电子票据、合同文件，假如其中的 金额或者涉及人员被恶意篡改将会给国家经济造成极大的损失。又如个人身份证 明、个人的文凭等需要扫描后以电子文档的形式进行保存，并作为一些职能部门 工作和管理的重要依据，这些信息一旦遭到篡改，会给国家职能部门工作和大众 生活带来极大的安全隐患。所以如何保证这些东西在存取、处理和传输各个环节 中的机密性、完整性和不可否认性，防止信息的泄漏和篡改，无疑成为电子政务 系统建设好坏的关键。特别是其中的身份认证己成为支撑开展应用的基本服务。 由于传统的单一认证手段己不适应新的需求，需要构建更加可靠的综合的身份认 证服务系统。 本文在深入分析当前主流认证技术的基础上，围绕电子政务系统的认证与授 权这一研究重点及其安全需求，利用 UML 建模方法提出了一个面向电子政务系统 的服务系统模型。与过去单一的一项认证不同，本文中提出的模型不仅能提供多 种认证机制，而且实现了单点登录和综合的用户管理和凭证管理机制，并得到初 步实现。 关键词：电子政务系统；身份认证；PKI I II II ABSTRACT ABSTRACT As the extent of Chinas modernization of the continuous development of the party and government organs at all levels of government and begin to rely on more and more office networks. However, with the scale of the network office, the security of e-government, Security issues are also increasingly prominent attention beginning. E-government involves government, business and personal confidential information, in addition to hacker attacks, virus infections, such as security threats from the network, but also from the system vulnerable to fake users log in, the unlawful alteration, such as data security threats. Therefore how to ensure that information in the access, processing and transmission of the various aspect of the confidentiality, integrity and non-repudiation to prevent leakage and falsification of information, e-government construction has undoubtedly become the key to success. Especially the one of identity authentication on the application has become the basic support services. Because the traditional means of a single certification has not meet the new demand, the need to build a more reliable authentication of the General Services system. In this thesis, in-depth analysis of the current mainstream of authentication technology based on e-government focus on authentication and authorization of the focus of the study and its secu