發(fā)布時間：2018-01-29 20:37

  本文關鍵詞： 桌面虛擬化 虛擬桌面 商業(yè)銀行網(wǎng)絡結構 網(wǎng)絡接入層安全　出處：《華南理工大學》2014年碩士論文　論文類型：學位論文

【摘要】：金融信息化的不斷發(fā)展，促進了金融業(yè)眾多商業(yè)銀行的發(fā)展，同時也使其面臨的信息安全風險增大。商業(yè)銀行網(wǎng)絡信息安全的威脅有多種來源，來自接入層的安全威脅便是其中最主要的來源之一。因此，解決商業(yè)銀行來自接入層網(wǎng)絡的安全問題顯得極為重要，它將降低商業(yè)銀行來自接入層網(wǎng)絡的安全威脅，總體上提高商業(yè)銀行網(wǎng)絡的安全防御能力并降低商業(yè)銀行網(wǎng)絡信息安全風險。 在對商業(yè)銀行網(wǎng)絡結構及安全存在的問題和現(xiàn)狀進行分析調研的基礎上，結合商業(yè)銀行的網(wǎng)絡訪問特點以及用戶訪問需求，，本文提出了有別于傳統(tǒng)方法的商業(yè)銀行接入層安全解決方案。首先對商業(yè)銀行現(xiàn)有的網(wǎng)絡結構和網(wǎng)絡安全策略進行重構和改造，在網(wǎng)絡結構和安全策略上取消接入層對原有核心層的直接訪問，在源頭上解除了接入層對核心層的直接安全威脅。其次通過結合桌面虛擬化技術的應用，使接入層用戶通過虛擬桌面的方式實現(xiàn)對核心層應用的間接訪問，滿足日常生產(chǎn)和辦公的訪問需要，同時利用桌面虛擬化技術的安全特性，整體提高系統(tǒng)的安全性。 通過上述兩方面結合產(chǎn)生的解決方案，在保證商業(yè)銀行接入層用戶原有日常生產(chǎn)、辦公的訪問需求在得到滿足的情況下，解決了來自網(wǎng)絡接入層的安全問題，降低了網(wǎng)絡接入層對核心層的安全威脅，實現(xiàn)了方案要求的目標。本解決方案是傳統(tǒng)商業(yè)銀行網(wǎng)絡接入層安全問題解決方法的有益補充和完善，同時隨著服務器、存儲等硬件技術的不斷發(fā)展以及相對成本的不斷降低，本解決方案的總體部署成本也相應降低，因此方案應用也將越來越廣泛。
[Abstract]:The continuous development of financial informatization has promoted the development of many commercial banks in the financial industry, at the same time, it has increased the risk of information security. There are many sources of threats to the network information security of commercial banks. The security threat from the access layer is one of the most important sources. Therefore, it is very important to solve the security problem of the commercial bank from the access layer network. It will reduce the security threat of the commercial bank from the access layer network, improve the security defense ability of the commercial bank network and reduce the network information security risk of the commercial bank in general. On the basis of analyzing and investigating the network structure and security problems of commercial banks, combined with the characteristics of network access and user access requirements of commercial banks. In this paper, different from the traditional methods of commercial bank access layer security solution. Firstly, the existing network structure and network security strategy of commercial banks are reconstructed and reformed. In the network structure and security strategy to cancel the access layer to the original core layer direct access to the source of the access layer to remove the core layer of direct security threats. Secondly through the combination of desktop virtualization technology applications. Access layer users through the virtual desktop to achieve indirect access to the core layer applications to meet the daily production and office access needs, while using desktop virtualization technology security features. Improve the security of the system as a whole. Through the combination of the above two solutions, in order to ensure the commercial bank access layer users' original daily production, office access requirements in the case of being satisfied, the security problem from the network access layer is solved. It reduces the security threat of network access layer to the core layer and realizes the goal of the solution. This solution is a useful supplement and perfection of the traditional commercial bank network access layer security solution. At the same time, with the continuous development of hardware technology such as server, storage and relative cost, the overall deployment cost of the solution will be reduced accordingly, so the application of the solution will be more and more extensive.
【學位授予單位】：華南理工大學
【學位級別】：碩士
【學位授予年份】：2014
【分類號】：TP393.08

【參考文獻】

相關期刊論文 前5條

1 潘松柏;張云勇;陳清金;賈寶軍;;桌面虛擬化研究及應用[J];電信網(wǎng)技術;2011年05期

2 陳長偉;劉罡;王浩;;黃委電子郵件系統(tǒng)中的活動目錄服務應用[J];辦公自動化;2004年05期

3 唐春蘭;;淺析Windows操作系統(tǒng)中的活動目錄[J];內(nèi)江科技;2007年06期

4 趙偉霞;;小議桌面虛擬化基礎架構[J];中國信息技術教育;2011年04期

5 唐志恩;;搭建安全的網(wǎng)絡接入層[J];信息與電腦(理論版);2010年02期

本文編號：1474305