發(fā)布時間：2018-01-29 20:37

  本文關(guān)鍵詞： 桌面虛擬化 虛擬桌面 商業(yè)銀行網(wǎng)絡(luò)結(jié)構(gòu) 網(wǎng)絡(luò)接入層安全　出處：《華南理工大學(xué)》2014年碩士論文　論文類型：學(xué)位論文

【摘要】：金融信息化的不斷發(fā)展，促進了金融業(yè)眾多商業(yè)銀行的發(fā)展，同時也使其面臨的信息安全風(fēng)險增大。商業(yè)銀行網(wǎng)絡(luò)信息安全的威脅有多種來源，來自接入層的安全威脅便是其中最主要的來源之一。因此，解決商業(yè)銀行來自接入層網(wǎng)絡(luò)的安全問題顯得極為重要，它將降低商業(yè)銀行來自接入層網(wǎng)絡(luò)的安全威脅，總體上提高商業(yè)銀行網(wǎng)絡(luò)的安全防御能力并降低商業(yè)銀行網(wǎng)絡(luò)信息安全風(fēng)險。 在對商業(yè)銀行網(wǎng)絡(luò)結(jié)構(gòu)及安全存在的問題和現(xiàn)狀進行分析調(diào)研的基礎(chǔ)上，結(jié)合商業(yè)銀行的網(wǎng)絡(luò)訪問特點以及用戶訪問需求，，本文提出了有別于傳統(tǒng)方法的商業(yè)銀行接入層安全解決方案。首先對商業(yè)銀行現(xiàn)有的網(wǎng)絡(luò)結(jié)構(gòu)和網(wǎng)絡(luò)安全策略進行重構(gòu)和改造，在網(wǎng)絡(luò)結(jié)構(gòu)和安全策略上取消接入層對原有核心層的直接訪問，在源頭上解除了接入層對核心層的直接安全威脅。其次通過結(jié)合桌面虛擬化技術(shù)的應(yīng)用，使接入層用戶通過虛擬桌面的方式實現(xiàn)對核心層應(yīng)用的間接訪問，滿足日常生產(chǎn)和辦公的訪問需要，同時利用桌面虛擬化技術(shù)的安全特性，整體提高系統(tǒng)的安全性。 通過上述兩方面結(jié)合產(chǎn)生的解決方案，在保證商業(yè)銀行接入層用戶原有日常生產(chǎn)、辦公的訪問需求在得到滿足的情況下，解決了來自網(wǎng)絡(luò)接入層的安全問題，降低了網(wǎng)絡(luò)接入層對核心層的安全威脅，實現(xiàn)了方案要求的目標(biāo)。本解決方案是傳統(tǒng)商業(yè)銀行網(wǎng)絡(luò)接入層安全問題解決方法的有益補充和完善，同時隨著服務(wù)器、存儲等硬件技術(shù)的不斷發(fā)展以及相對成本的不斷降低，本解決方案的總體部署成本也相應(yīng)降低，因此方案應(yīng)用也將越來越廣泛。
[Abstract]:The continuous development of financial informatization has promoted the development of many commercial banks in the financial industry, at the same time, it has increased the risk of information security. There are many sources of threats to the network information security of commercial banks. The security threat from the access layer is one of the most important sources. Therefore, it is very important to solve the security problem of the commercial bank from the access layer network. It will reduce the security threat of the commercial bank from the access layer network, improve the security defense ability of the commercial bank network and reduce the network information security risk of the commercial bank in general. On the basis of analyzing and investigating the network structure and security problems of commercial banks, combined with the characteristics of network access and user access requirements of commercial banks. In this paper, different from the traditional methods of commercial bank access layer security solution. Firstly, the existing network structure and network security strategy of commercial banks are reconstructed and reformed. In the network structure and security strategy to cancel the access layer to the original core layer direct access to the source of the access layer to remove the core layer of direct security threats. Secondly through the combination of desktop virtualization technology applications. Access layer users through the virtual desktop to achieve indirect access to the core layer applications to meet the daily production and office access needs, while using desktop virtualization technology security features. Improve the security of the system as a whole. Through the combination of the above two solutions, in order to ensure the commercial bank access layer users' original daily production, office access requirements in the case of being satisfied, the security problem from the network access layer is solved. It reduces the security threat of network access layer to the core layer and realizes the goal of the solution. This solution is a useful supplement and perfection of the traditional commercial bank network access layer security solution. At the same time, with the continuous development of hardware technology such as server, storage and relative cost, the overall deployment cost of the solution will be reduced accordingly, so the application of the solution will be more and more extensive.
【學(xué)位授予單位】：華南理工大學(xué)
【學(xué)位級別】：碩士
【學(xué)位授予年份】：2014
【分類號】：TP393.08

【參考文獻】

相關(guān)期刊論文 前5條

1 潘松柏;張云勇;陳清金;賈寶軍;;桌面虛擬化研究及應(yīng)用[J];電信網(wǎng)技術(shù);2011年05期

2 陳長偉;劉罡;王浩;;黃委電子郵件系統(tǒng)中的活動目錄服務(wù)應(yīng)用[J];辦公自動化;2004年05期

3 唐春蘭;;淺析Windows操作系統(tǒng)中的活動目錄[J];內(nèi)江科技;2007年06期

4 趙偉霞;;小議桌面虛擬化基礎(chǔ)架構(gòu)[J];中國信息技術(shù)教育;2011年04期

5 唐志恩;;搭建安全的網(wǎng)絡(luò)接入層[J];信息與電腦(理論版);2010年02期

本文編號：1474305