本文選題：天津考試院 + 網(wǎng)絡(luò)安全��； 參考：《天津大學(xué)》2014年碩士論文

【摘要】：隨著計(jì)算機(jī)技術(shù)的發(fā)展和普及，計(jì)算機(jī)網(wǎng)絡(luò)給人們提供了很大的便利，同時也改變著人們的學(xué)習(xí)和生活方式并且已經(jīng)滲透到了非常重要的領(lǐng)域，一個小小的差錯都有可能引起重大的社會問題。尤其面對當(dāng)今互聯(lián)網(wǎng)安全問題日益突出的形勢，網(wǎng)絡(luò)信息的安全已經(jīng)變得越來越重要。 高等教育自學(xué)考試又稱高自考，是對自學(xué)者進(jìn)行的以學(xué)歷考試為主的高等教育國家考試。天津考試院的主要任務(wù)為招生和考試，業(yè)務(wù)范圍覆蓋全天津市幾十萬考生的各類考試，對信息安全有很高的要求，一個很簡單的數(shù)據(jù)錯誤可能會給考生造成很大的不便和影響。本文主要以天津考試院高自考信息項(xiàng)目為例，對其進(jìn)行了安全分析和程序改進(jìn)，包括數(shù)據(jù)加密，Session安全，數(shù)據(jù)庫安全等方面內(nèi)容的重新設(shè)計(jì)，進(jìn)一步增強(qiáng)該信息系統(tǒng)的安全系數(shù)，為考生的利益保駕護(hù)航。對于數(shù)據(jù)安全方面，重新設(shè)計(jì)了身份認(rèn)證環(huán)節(jié)。對于考生系統(tǒng)而言，通過數(shù)據(jù)庫讀取“鹽”值，與考生輸入的密碼進(jìn)行“攪拌”，然后通過MD5加密進(jìn)行密文傳輸，服務(wù)器獲得數(shù)據(jù)后進(jìn)行第二次MD5加密再尋找匹配項(xiàng)，以保證登錄的安全性；同時，，設(shè)計(jì)了忘記密碼功能，方便考生在忘記密碼的情況下重置密碼。對于區(qū)縣系統(tǒng)而言，統(tǒng)一利用USB Key進(jìn)行身份認(rèn)證，只有在密碼和key值統(tǒng)一時才能登錄系統(tǒng)。在數(shù)據(jù)庫安全方面，設(shè)計(jì)了數(shù)據(jù)庫的自動備份和防止SQL注入的解決方案。 合理的安全設(shè)計(jì)可以保障信息系統(tǒng)安全穩(wěn)定的運(yùn)行，同時保障廣大考生的切身利益。
[Abstract]:With the development and popularization of computer technology, the computer network has provided great convenience to people, at the same time, it has changed people's learning and life style and has penetrated into very important fields. A small error can cause major social problems. Especially in the face of the increasingly prominent problem of Internet security, the security of network information has become more and more important. Higher education self-study examination, also known as high self-examination, is a national examination of higher education. The main task of Tianjin examination Institute is to recruit students and examinations. The scope of business covers hundreds of thousands of examinees in Tianjin, which has high requirements for information security. A very simple data error may cause great inconvenience and influence to candidates. This paper mainly takes the information item of Tianjin examination Institute as an example, carries on the security analysis and the program improvement to it, including the data encryption session security, the database security and so on the content redesign, further enhances this information system the safety coefficient. Protect the interests of candidates. For the data security aspect, the identity authentication link is redesigned. For the examinee system, the "salt" value is read through the database, "stirred" with the password entered by the examinee, and then encrypted through MD5 to transmit the ciphertext. After the server obtains the data, it encrypts the data a second time and then searches for a match. At the same time, the function of forgetting password is designed to make it convenient for examinee to reset password if he forgot his password. For the district and county system, USB Key is used to authenticate identity. Only when the password and key value are unified, can the system be logged in. In the aspect of database security, a solution to automatically backup database and prevent SQL injection is designed. Reasonable security design can ensure the safe and stable operation of the information system, and ensure the vital interests of the candidates.
【學(xué)位授予單位】：天津大學(xué)
【學(xué)位級別】：碩士
【學(xué)位授予年份】：2014
【分類號】：TP393.08

【參考文獻(xiàn)】

相關(guān)期刊論文 前10條

1 楊璐婷;劉天時;;數(shù)據(jù)庫備份恢復(fù)技術(shù)的研究及應(yīng)用設(shè)計(jì)[J];電腦知識與技術(shù)(學(xué)術(shù)交流);2007年06期

2 賈艷霞;;信息數(shù)據(jù)加密技術(shù)與方法探討[J];硅谷;2009年07期

3 李建筑;工作流管理技術(shù)研究[J];華北電力技術(shù);2001年08期

4 吳溥峰;張玉清;;數(shù)據(jù)庫安全綜述[J];計(jì)算機(jī)工程;2006年12期

5 張?jiān)品?;Oracle數(shù)據(jù)庫備份與恢復(fù)策略[J];計(jì)算機(jī)工程;2009年15期

6 顧治華;忽朝儉;;MySQL存儲引擎與數(shù)據(jù)庫性能[J];計(jì)算機(jī)時代;2006年10期

7 朱良根,雷振甲,張玉清;數(shù)據(jù)庫安全技術(shù)研究[J];計(jì)算機(jī)應(yīng)用研究;2004年09期

8 劉知貴,楊立春,蒲潔,張霜;基于PKI技術(shù)的數(shù)字簽名身份認(rèn)證系統(tǒng)[J];計(jì)算機(jī)應(yīng)用研究;2004年09期

9 崔艷榮,文漢云;數(shù)據(jù)庫安全模型及其應(yīng)用研究[J];計(jì)算機(jī)應(yīng)用研究;2005年07期

10 易國洪;;內(nèi)存數(shù)據(jù)庫中恢復(fù)技術(shù)研究[J];科技廣場;2007年03期

相關(guān)博士學(xué)位論文 前1條

1 李旭;系統(tǒng)級數(shù)據(jù)保護(hù)技術(shù)研究[D];華中科技大學(xué);2008年

本文編號：1865720