發(fā)布時(shí)間：2018-01-29 20:37

  本文關(guān)鍵詞： 桌面虛擬化 虛擬桌面 商業(yè)銀行網(wǎng)絡(luò)結(jié)構(gòu) 網(wǎng)絡(luò)接入層安全　出處：《華南理工大學(xué)》2014年碩士論文　論文類(lèi)型：學(xué)位論文

【摘要】：金融信息化的不斷發(fā)展，促進(jìn)了金融業(yè)眾多商業(yè)銀行的發(fā)展，同時(shí)也使其面臨的信息安全風(fēng)險(xiǎn)增大。商業(yè)銀行網(wǎng)絡(luò)信息安全的威脅有多種來(lái)源，來(lái)自接入層的安全威脅便是其中最主要的來(lái)源之一。因此，解決商業(yè)銀行來(lái)自接入層網(wǎng)絡(luò)的安全問(wèn)題顯得極為重要，它將降低商業(yè)銀行來(lái)自接入層網(wǎng)絡(luò)的安全威脅，總體上提高商業(yè)銀行網(wǎng)絡(luò)的安全防御能力并降低商業(yè)銀行網(wǎng)絡(luò)信息安全風(fēng)險(xiǎn)。 在對(duì)商業(yè)銀行網(wǎng)絡(luò)結(jié)構(gòu)及安全存在的問(wèn)題和現(xiàn)狀進(jìn)行分析調(diào)研的基礎(chǔ)上，結(jié)合商業(yè)銀行的網(wǎng)絡(luò)訪(fǎng)問(wèn)特點(diǎn)以及用戶(hù)訪(fǎng)問(wèn)需求，，本文提出了有別于傳統(tǒng)方法的商業(yè)銀行接入層安全解決方案。首先對(duì)商業(yè)銀行現(xiàn)有的網(wǎng)絡(luò)結(jié)構(gòu)和網(wǎng)絡(luò)安全策略進(jìn)行重構(gòu)和改造，在網(wǎng)絡(luò)結(jié)構(gòu)和安全策略上取消接入層對(duì)原有核心層的直接訪(fǎng)問(wèn)，在源頭上解除了接入層對(duì)核心層的直接安全威脅。其次通過(guò)結(jié)合桌面虛擬化技術(shù)的應(yīng)用，使接入層用戶(hù)通過(guò)虛擬桌面的方式實(shí)現(xiàn)對(duì)核心層應(yīng)用的間接訪(fǎng)問(wèn)，滿(mǎn)足日常生產(chǎn)和辦公的訪(fǎng)問(wèn)需要，同時(shí)利用桌面虛擬化技術(shù)的安全特性，整體提高系統(tǒng)的安全性。 通過(guò)上述兩方面結(jié)合產(chǎn)生的解決方案，在保證商業(yè)銀行接入層用戶(hù)原有日常生產(chǎn)、辦公的訪(fǎng)問(wèn)需求在得到滿(mǎn)足的情況下，解決了來(lái)自網(wǎng)絡(luò)接入層的安全問(wèn)題，降低了網(wǎng)絡(luò)接入層對(duì)核心層的安全威脅，實(shí)現(xiàn)了方案要求的目標(biāo)。本解決方案是傳統(tǒng)商業(yè)銀行網(wǎng)絡(luò)接入層安全問(wèn)題解決方法的有益補(bǔ)充和完善，同時(shí)隨著服務(wù)器、存儲(chǔ)等硬件技術(shù)的不斷發(fā)展以及相對(duì)成本的不斷降低，本解決方案的總體部署成本也相應(yīng)降低，因此方案應(yīng)用也將越來(lái)越廣泛。
[Abstract]:The continuous development of financial informatization has promoted the development of many commercial banks in the financial industry, at the same time, it has increased the risk of information security. There are many sources of threats to the network information security of commercial banks. The security threat from the access layer is one of the most important sources. Therefore, it is very important to solve the security problem of the commercial bank from the access layer network. It will reduce the security threat of the commercial bank from the access layer network, improve the security defense ability of the commercial bank network and reduce the network information security risk of the commercial bank in general. On the basis of analyzing and investigating the network structure and security problems of commercial banks, combined with the characteristics of network access and user access requirements of commercial banks. In this paper, different from the traditional methods of commercial bank access layer security solution. Firstly, the existing network structure and network security strategy of commercial banks are reconstructed and reformed. In the network structure and security strategy to cancel the access layer to the original core layer direct access to the source of the access layer to remove the core layer of direct security threats. Secondly through the combination of desktop virtualization technology applications. Access layer users through the virtual desktop to achieve indirect access to the core layer applications to meet the daily production and office access needs, while using desktop virtualization technology security features. Improve the security of the system as a whole. Through the combination of the above two solutions, in order to ensure the commercial bank access layer users' original daily production, office access requirements in the case of being satisfied, the security problem from the network access layer is solved. It reduces the security threat of network access layer to the core layer and realizes the goal of the solution. This solution is a useful supplement and perfection of the traditional commercial bank network access layer security solution. At the same time, with the continuous development of hardware technology such as server, storage and relative cost, the overall deployment cost of the solution will be reduced accordingly, so the application of the solution will be more and more extensive.
【學(xué)位授予單位】：華南理工大學(xué)
【學(xué)位級(jí)別】：碩士
【學(xué)位授予年份】：2014
【分類(lèi)號(hào)】：TP393.08

【參考文獻(xiàn)】

相關(guān)期刊論文 前5條

1 潘松柏;張?jiān)朴?陳清金;賈寶軍;;桌面虛擬化研究及應(yīng)用[J];電信網(wǎng)技術(shù);2011年05期

2 陳長(zhǎng)偉;劉罡;王浩;;黃委電子郵件系統(tǒng)中的活動(dòng)目錄服務(wù)應(yīng)用[J];辦公自動(dòng)化;2004年05期

3 唐春蘭;;淺析Windows操作系統(tǒng)中的活動(dòng)目錄[J];內(nèi)江科技;2007年06期

4 趙偉霞;;小議桌面虛擬化基礎(chǔ)架構(gòu)[J];中國(guó)信息技術(shù)教育;2011年04期

5 唐志恩;;搭建安全的網(wǎng)絡(luò)接入層[J];信息與電腦(理論版);2010年02期

本文編號(hào)：1474305