本文關(guān)鍵詞： 密級標(biāo)識 數(shù)字證書 數(shù)字簽名 數(shù)字化定密　出處：《杭州電子科技大學(xué)》2015年碩士論文　論文類型：學(xué)位論文

【摘要】：自新保密法于2010年頒布以來,保密領(lǐng)域的信息化工作依法有序地展開。按照《涉及國家秘密的信息系統(tǒng)分級保護(hù)技術(shù)要求》(BMB17-2006)的相關(guān)定義,密級標(biāo)識必須符合以下特性:不可分離和不可篡改。密級標(biāo)識管理至少需要做到以下幾點(diǎn):密級標(biāo)識生成;密級標(biāo)識的提取;基于密級標(biāo)識的秘密管理;基于密級標(biāo)識的技術(shù)防護(hù)體系;基于密級標(biāo)識的秘密檢查。本文以密級標(biāo)識的管理為背景,設(shè)計了一套適應(yīng)密級標(biāo)識管理要求的系統(tǒng)。系統(tǒng)以基于數(shù)字證書的PKI系統(tǒng)為框架,為定密管理系統(tǒng)提供密級標(biāo)識的添加、提取、修改、去除、驗證等服務(wù),從而減輕了定密管理系統(tǒng)中密級標(biāo)識管理的負(fù)擔(dān)。通過對現(xiàn)有密級標(biāo)識管理工作的分析,總結(jié)得出,將數(shù)字簽名技術(shù)應(yīng)用于密級標(biāo)識管理系統(tǒng),能保證密級標(biāo)識管理的安全性。因此,本文將原有PKI系統(tǒng)進(jìn)行擴(kuò)展,實現(xiàn)對密級標(biāo)識的權(quán)限管理。此外,為解決不同格式文件添加密級標(biāo)識困難的問題,本文提出一種利用虛擬打印的方法來實現(xiàn)密級標(biāo)識的自動添加,并結(jié)合XML格式來存儲密級標(biāo)識擴(kuò)展屬性信息、權(quán)限信息、跟蹤信息,實現(xiàn)對密級標(biāo)識提取、驗證、跟蹤。本系統(tǒng)還設(shè)計了一種私有文件格式,確保涉密文件和密級標(biāo)識存儲、傳輸安全。
[Abstract]:Since the new Secrets Act was enacted on 2010. The information work in the field of secrecy has been carried out in an orderly manner according to the relevant definitions of BMB17-2006 in accordance with the Technical requirements for hierarchical Protection of Information Systems involving State Secrets. The secret level identification must conform to the following characteristics: inseparability and non-tampering. The management of the secret level identification must do the following at least: the generation of the secret level identification; Extraction of secret class identification; Secret management based on classified identification; The technical protection system based on the classified marking; Based on the secret inspection of the secret level identification, this paper designs a set of system to meet the requirement of the secret level identification management. The system is based on the PKI system based on digital certificate. Provide the service of adding, extracting, modifying, removing, verifying and so on for the secret management system. In order to reduce the burden of classified identification management in the classified management system, through the analysis of the existing classified identification management work, it is concluded that the digital signature technology is applied to the classified identification management system. Therefore, this paper extends the original PKI system to realize the privilege management of the secret level identity. In addition, it solves the problem of adding the secret level identification to different format files. In this paper, a method of virtual printing is proposed to automatically add secret class identification, and XML format is used to store extended attribute information, privilege information, trace information and extract secret level identification. Verification, tracking. This system also designed a private file format to ensure the storage of confidential files and secret identification, transmission security.
【學(xué)位授予單位】：杭州電子科技大學(xué)
【學(xué)位級別】：碩士
【學(xué)位授予年份】：2015
【分類號】：TN918.91

【共引文獻(xiàn)】

相關(guān)博士學(xué)位論文 前2條

1 姚志強(qiáng);普適計算模式下的文檔組合與安全研究[D];西安電子科技大學(xué);2014年

2 熊金波;云計算環(huán)境中文檔安全訪問與自毀研究[D];西安電子科技大學(xué);2013年

，

本文編號：1480723