浦發(fā)銀行網(wǎng)上銀行安全體系的構(gòu)建
發(fā)布時(shí)間:2018-11-16 17:30
【摘要】:自從互聯(lián)網(wǎng)大發(fā)展以來(lái),網(wǎng)上銀行提供的功能越來(lái)越豐富,2010年的網(wǎng)上銀行交易額接近554萬(wàn)億元人民幣,相當(dāng)于2010年國(guó)內(nèi)生產(chǎn)總值的39萬(wàn)億的14倍。由于互聯(lián)網(wǎng)是一個(gè)開放的網(wǎng)絡(luò),網(wǎng)上銀行已經(jīng)成為不法分子惡意攻擊的目標(biāo),據(jù)統(tǒng)計(jì)當(dāng)前針對(duì)網(wǎng)上銀行的犯罪案件數(shù)量快速上升。網(wǎng)上銀行一旦出現(xiàn)局部安全事件,就會(huì)快速傳播,產(chǎn)生全局性的影響,并且?guī)?lái)一系列嚴(yán)重的后果,不僅會(huì)給銀行帶來(lái)難以估量的聲譽(yù)及經(jīng)濟(jì)損失,而且會(huì)影響到社會(huì)穩(wěn)定。網(wǎng)上銀行的安全性已經(jīng)引起社會(huì)各個(gè)層面的關(guān)注。 浦發(fā)銀行作為國(guó)內(nèi)股份制商業(yè)銀行之一,在我國(guó)銀行領(lǐng)域占據(jù)舉足輕重的地位。網(wǎng)上銀行是浦發(fā)銀行重要的業(yè)務(wù)窗口,其安全性始終是銀行業(yè)務(wù)的重要關(guān)注點(diǎn)。本文通過(guò)對(duì)浦發(fā)銀行網(wǎng)上銀行安全體系的整體分析,提供了一個(gè)更安全的網(wǎng)上銀行架構(gòu),確保網(wǎng)上銀行業(yè)務(wù)的持續(xù)快速發(fā)展。 本文的創(chuàng)新之處在于以下四點(diǎn): 1.構(gòu)建完整的安全體系:網(wǎng)上銀行的安全體系通常涉及面較廣,以往的論文僅局限于安全體系的一個(gè)局部,而本文主要從技術(shù)方面,設(shè)計(jì)一個(gè)完整的安全體系,構(gòu)建一個(gè)客戶放心的安全的網(wǎng)上銀行,主要包括基礎(chǔ)設(shè)施安全、客戶端安全、動(dòng)態(tài)密碼和災(zāi)難備份。 2.增加網(wǎng)上銀行客戶端安全的設(shè)計(jì):長(zhǎng)久以來(lái),網(wǎng)上銀行的服務(wù)端安全一直比較受到重視,不管是防火墻、IDS/IPS等安全產(chǎn)品也多針對(duì)銀行端安全,但是最近頻繁出現(xiàn)的“網(wǎng)銀大盜”等安全威脅通過(guò)原本不太受重視的客戶端來(lái)實(shí)施犯罪。所以,本文將網(wǎng)上銀行客戶端的安全作為安全體系中的重要的組成部分。 3.采用動(dòng)態(tài)密碼:銀行卡密碼一般為一個(gè)6位的數(shù)字密碼,在傳統(tǒng)的使用場(chǎng)景下,安全性能夠得到保證;在互聯(lián)網(wǎng)時(shí)代,固定的密碼較容易被破解及獲取,所以有些網(wǎng)上銀行引入了證書等安全手段來(lái)進(jìn)行客戶認(rèn)證,但其使用的復(fù)雜性較高、推廣較為困難。本文采用了動(dòng)態(tài)密碼的方式,由于其易用性可以在網(wǎng)上銀行安全領(lǐng)域推廣使用。 4.設(shè)計(jì)網(wǎng)上銀行異地災(zāi)備架構(gòu):為了提升客戶服務(wù)體驗(yàn),保證網(wǎng)上銀行能夠7x24小時(shí)運(yùn)行,不會(huì)由于電力、通訊等環(huán)境因素導(dǎo)致服務(wù)異常,構(gòu)建網(wǎng)上銀行的異地災(zāi)難備份也成為保障業(yè)務(wù)連續(xù)運(yùn)行的必須。同時(shí),考慮到災(zāi)備環(huán)境的利用率,將網(wǎng)上銀行災(zāi)備設(shè)計(jì)成雙活的體系架構(gòu)。
[Abstract]:Since the development of the Internet, online banking has provided more and more functions, with online banking transactions reaching nearly 554 trillion yuan in 2010, 14 times the 2010 gross domestic product (GDP) of 39 trillion. As the Internet is an open network, Internet banking has become the target of malicious attacks by lawless elements. According to statistics, the number of criminal cases against Internet banking is increasing rapidly. Once there is a local security event, the online bank will spread quickly and have a global impact, and bring a series of serious consequences, which will not only bring incalculable reputation and economic losses to the bank, but also affect social stability. The security of online banking has attracted the attention of all levels of society. As one of the domestic joint-stock commercial banks, Pudong Development Bank occupies a pivotal position in the banking field of our country. Internet banking is an important business window of Pudong Development Bank, and its security is always an important concern of bank business. Through the overall analysis of the security system of Pudong Development Bank online banking, this paper provides a more secure network banking architecture to ensure the continuous and rapid development of online banking business. The innovation of this paper lies in the following four points: 1. Building a complete security system: the security system of Internet banking is usually involved in a wide range of areas, the previous papers are limited to only one part of the security system, but this paper mainly from the technical aspect, design a complete security system, Build a secure online bank, including infrastructure security, client security, dynamic password and disaster backup. 2. Increasing the design of client security of Internet banking: for a long time, the security of service side of Internet banking has been paid more attention to, no matter it is firewall, IDS/IPS and other security products are also aimed at bank security, However, security threats such as cyber theft, which have been frequently seen recently, commit crimes through less valued clients. Therefore, this paper regards the security of Internet banking client as an important part of the security system. 3. Adopt dynamic password: bank card password is a 6-bit digital password, in the traditional use scenario, the security can be guaranteed; In the Internet era, the fixed password is easy to be cracked and obtained, so some online banks have introduced the certificate and other security means to authenticate their customers, but the complexity of their use is higher, so it is difficult to promote. This paper uses dynamic password, because of its ease of use can be used in the field of online banking security. 4. To improve customer service experience and ensure that Internet banking can run in 7x24 hours, it will not cause abnormal service due to environmental factors such as power, communication, etc. The construction of online banking disaster backup is also necessary to ensure the continuous operation of business. At the same time, considering the utilization of disaster preparedness environment, the disaster preparedness of online banking is designed as a dual-live architecture.
【學(xué)位授予單位】:復(fù)旦大學(xué)
【學(xué)位級(jí)別】:碩士
【學(xué)位授予年份】:2012
【分類號(hào)】:TP309;F830.49
本文編號(hào):2336165
[Abstract]:Since the development of the Internet, online banking has provided more and more functions, with online banking transactions reaching nearly 554 trillion yuan in 2010, 14 times the 2010 gross domestic product (GDP) of 39 trillion. As the Internet is an open network, Internet banking has become the target of malicious attacks by lawless elements. According to statistics, the number of criminal cases against Internet banking is increasing rapidly. Once there is a local security event, the online bank will spread quickly and have a global impact, and bring a series of serious consequences, which will not only bring incalculable reputation and economic losses to the bank, but also affect social stability. The security of online banking has attracted the attention of all levels of society. As one of the domestic joint-stock commercial banks, Pudong Development Bank occupies a pivotal position in the banking field of our country. Internet banking is an important business window of Pudong Development Bank, and its security is always an important concern of bank business. Through the overall analysis of the security system of Pudong Development Bank online banking, this paper provides a more secure network banking architecture to ensure the continuous and rapid development of online banking business. The innovation of this paper lies in the following four points: 1. Building a complete security system: the security system of Internet banking is usually involved in a wide range of areas, the previous papers are limited to only one part of the security system, but this paper mainly from the technical aspect, design a complete security system, Build a secure online bank, including infrastructure security, client security, dynamic password and disaster backup. 2. Increasing the design of client security of Internet banking: for a long time, the security of service side of Internet banking has been paid more attention to, no matter it is firewall, IDS/IPS and other security products are also aimed at bank security, However, security threats such as cyber theft, which have been frequently seen recently, commit crimes through less valued clients. Therefore, this paper regards the security of Internet banking client as an important part of the security system. 3. Adopt dynamic password: bank card password is a 6-bit digital password, in the traditional use scenario, the security can be guaranteed; In the Internet era, the fixed password is easy to be cracked and obtained, so some online banks have introduced the certificate and other security means to authenticate their customers, but the complexity of their use is higher, so it is difficult to promote. This paper uses dynamic password, because of its ease of use can be used in the field of online banking security. 4. To improve customer service experience and ensure that Internet banking can run in 7x24 hours, it will not cause abnormal service due to environmental factors such as power, communication, etc. The construction of online banking disaster backup is also necessary to ensure the continuous operation of business. At the same time, considering the utilization of disaster preparedness environment, the disaster preparedness of online banking is designed as a dual-live architecture.
【學(xué)位授予單位】:復(fù)旦大學(xué)
【學(xué)位級(jí)別】:碩士
【學(xué)位授予年份】:2012
【分類號(hào)】:TP309;F830.49
【引證文獻(xiàn)】
相關(guān)期刊論文 前1條
1 劉國(guó)斌;姜南;;高校財(cái)務(wù)網(wǎng)上銀行業(yè)務(wù)的安全性分析[J];中國(guó)集體經(jīng)濟(jì);2015年28期
相關(guān)碩士學(xué)位論文 前1條
1 王紹龍;網(wǎng)上銀行操作風(fēng)險(xiǎn)及其防范研究[D];天津大學(xué);2013年
,本文編號(hào):2336165
本文鏈接:http://sikaile.net/guanlilunwen/huobilw/2336165.html
最近更新
教材專著
