Thomas Sabo online shop skz isv bfnm abs

asbryobvrz

Document exchange system security solution

The following four aspects. User authentication. Document integrity. Document transmission security. Send and receive documents non-repudiation. The core idea of solution is to use PKI technology to establish a set of authentication, data encryption, digital signatures, access control is one of the perfect security solutions to ensure the security of document exchange system. Package by combining the use of digital certificates, the whole system transparent migration to PKI-based technology to build a secure platform. Web 2.1 security system solutions to address the use of digital certificates for authentication, data encryption and data integrity problems,[link widoczny dla zalogowanych], document exchange system, Web system needs to be configured to support HTTPS protocol approach. All of the Web System is protected by HTTPS protocol effectively to solve the user and web systems based on digital certificate authentication and encrypted transmission of information on the issue. First of all, HTTPS protocol to Web applications and isolate unauthorized access to HTTPS protocol requires that the visitor must have a specific digital certificate issued by CA central to access the web system. Secondly, HTTPS protocol can be established based on the online digital certificate validation authentication mechanism that makes up for in practical applications to use the traditional username / password for authentication deficiencies. Third, HTTPS protocol between the user and Web application information transmission SSL encryption and integrity check in accordance with the agreement to pass all information encrypted to prevent the network eavesdropping, to prevent the information being stolen or leaked. Meanwhile, SSL data transfer protocol itself has integrity check (MAC), guaranteed not only each time you send data to send encrypted data, but also send a check code MAC,[link widoczny dla zalogowanych], effective in the prevention of data tampering in the transmission process . Fourth, security access control system to achieve Web-based digital certificate authentication, the system will fill in the certificate in the user's private information. According to these private information, the system that each user can assign the appropriate access rights. 2.2 send and receive documents to deal with this process, the application system using CA security system complete the following actions: send and receive mutual authentication, encrypted data transmission. Communication between the parties can confirm the identity of the other party can be trusted, while the form of a digital envelope to make the transmission of electronic documents in the transmission process can not be obtained by other listeners, detailed as follows. (1) client sends the certificate request to the server request. (2) The server sends a response message, the response message contains the response data, the server response data of the signature private key and server certificate. (3) The client receives the response message, using the local cache of the CA certificate verification of the server-side certificate is legitimate, and use server-side certificate validation response message to the signature value to determine whether the server certificate for the owner (the process is the authentication server). (4) The client sends an authentication request, the request includes request data, the client requests data on the signature private key and client certificate. (5) The server receives the authentication request, use the local cache of the CA certificate verification of the legality of the client-side certificates and use the client-side certificate verification response message signature value to determine whether the client-side certificate for the owner (This process is the client authentication). (6) The server sends an authentication response message. (7) client certificate with a public key server to do digital envelope, the envelope data is sent to the server. ( Cool

server receives the envelope data, and use their private key to unlock the digital envelope, get the original data, and the business processes. (9) If the server has data to send, organize the original data and use client-side public key certificates that do digital envelope and the envelope data is sent to the client side. (10) server receives the envelope data, and use their private key to unlock the digital envelope, get the original data,[link widoczny dla zalogowanych], and the business processes. 3 Conclusion We will document exchange system uses digital certificates work,[link widoczny dla zalogowanych], using the HTTPS protocol to ensure information security and integrity of the transmission, and document exchange system,[link widoczny dla zalogowanych], authentication, data encryption and digital signature solutions, network applications can be safeguarded security, governments and businesses can help improve operational efficiency for our government and enterprise information to provide the necessary tools and security services. ① Author: Ye Jianhong (1975 a), female, Lishui, Zhejiang, undergraduate, engineers, the main research directions: computer applications, network security, data communications. 26 TECHNOLOGY INFORMATION SCIENCE & TECHNOLOGYINFORMATION