本文選題：移動辦公　切入點(diǎn)：安全管理　出處：《南京理工大學(xué)》2017年碩士論文　論文類型：學(xué)位論文

【摘要】：隨著智能手機(jī)等移動設(shè)備的全面普及,移動辦公方式發(fā)生了巨大的改變,辦公人員可以擺脫空間和時(shí)間的約束,使用手機(jī)隨時(shí)隨地進(jìn)行辦公。這一便利也帶來了極大的安全隱患,比如辦公人員保存、傳播、盜用公司機(jī)密信息,因此對于移動辦公能否制定一個(gè)安全解決方案是移動辦公發(fā)展的瓶頸。論文選題來源于深圳中興網(wǎng)信技術(shù)有限公司的實(shí)際項(xiàng)目"云盾--移動辦公安全解決方案"。該系統(tǒng)汲取了現(xiàn)有移動辦公系統(tǒng)的優(yōu)點(diǎn),并對其不足之處進(jìn)行改善,將云計(jì)算的優(yōu)勢融入其中,通過在手機(jī)上連接云計(jì)算中心,獲取遠(yuǎn)程虛擬化的Android系統(tǒng)環(huán)境,該系統(tǒng)不存儲于本地,手機(jī)端只進(jìn)行頁面展示,所有數(shù)據(jù)均存儲于云端虛擬機(jī)中,達(dá)到安全辦公,降低公司成本,不侵?jǐn)_員工隱私的目標(biāo)。本文圍繞云盾移動辦公解決方案的改版項(xiàng)目,對移動管理系統(tǒng)進(jìn)行設(shè)計(jì)和分析。論文的主要工作包括:首先,對系統(tǒng)開發(fā)框架進(jìn)行概述,比較了各種技術(shù)開發(fā)框架后,采用目前性能較好的Spring MVC框架進(jìn)行開發(fā),同時(shí)使用數(shù)據(jù)持久層框架MyBatis進(jìn)行配合,實(shí)現(xiàn)了對應(yīng)用層的基礎(chǔ)支撐,簡化了前端與后臺繁瑣的數(shù)據(jù)交互。其次,詳細(xì)介紹了定制云平臺和云數(shù)據(jù)庫的方法,并對Windows Azure公有云服務(wù)和SQLAzure進(jìn)行了詳細(xì)說明,實(shí)現(xiàn)了系統(tǒng)在云平臺的部署和存儲服務(wù)。然后通過對系統(tǒng)需求的分析,完成了系統(tǒng)主要功能的設(shè)計(jì),包括用戶管理,虛擬機(jī)管理,客戶端版本管理,應(yīng)用管理,登錄驗(yàn)證等七個(gè)模塊,給出了部分主要模塊的代碼示例,實(shí)現(xiàn)了對云辦公方式的安全管理。在安全分析部分,由于云服務(wù)商都是不可完全信任的,將數(shù)據(jù)存儲在云平臺中的安全問題是系統(tǒng)設(shè)計(jì)必不可少的部分。本文提出使用云審計(jì)的方式驗(yàn)證云端數(shù)據(jù)的完整性,通過對云服務(wù)商,用戶,TPA(第三方審計(jì),Third Party Audit)三個(gè)終端在云審計(jì)過程中的交互進(jìn)行模擬仿真,實(shí)現(xiàn)了云端數(shù)據(jù)完整性驗(yàn)證的目標(biāo)。最后,對系統(tǒng)進(jìn)行測試,分為功能和性能進(jìn)行測試,功能測試部分展現(xiàn)系統(tǒng)各個(gè)模塊正常運(yùn)行,性能測試通過逐漸加壓的方式對客戶端并發(fā)登錄以及客戶端并發(fā)操作進(jìn)行壓力測試,評估系統(tǒng)的最大處理能力。
[Abstract]:With the popularity of mobile devices such as smart phones, the mode of mobile office has changed dramatically. Office workers can get rid of the constraints of space and time. This convenience also brings great security risks, such as the preservation, dissemination, and embezzlement of confidential company information by office personnel. Therefore, whether the mobile office can make a security solution is the bottleneck of the development of mobile office. This paper comes from the actual project "cloud shield-mobile office security solution" of Shenzhen ZTE Technology Co., Ltd. The system draws on the advantages of the existing mobile office system, By connecting the cloud computing center on the mobile phone, we can get the remote virtualization Android system environment, the system is not stored in the local, the mobile phone only carries on the page display. All data are stored in the cloud virtual machine to achieve the goal of secure office work, reduce company costs, and do not intrude on the privacy of employees. The main work of this paper is as follows: firstly, the system development framework is summarized. After comparing various technical development frameworks, the Spring MVC framework with better performance is used to develop the mobile management system. At the same time, the data persistence layer framework MyBatis is used to support the application layer, which simplifies the complicated data interaction between the front end and the background. Secondly, the method of customizing cloud platform and cloud database is introduced in detail. The Windows Azure public cloud service and SQLAzure are described in detail, and the deployment and storage services of the system on the cloud platform are realized. Then, through the analysis of the system requirements, the design of the main functions of the system is completed, including user management, virtual machine management, and so on. Seven modules, such as client version management, application management, login verification and so on, are given. The code examples of some main modules are given, and the security management of cloud office mode is realized. In the security analysis part, because cloud service providers are not completely trusted, The security of storing data in cloud platform is an essential part of system design. This paper proposes to use cloud audit to verify the integrity of cloud data. The interaction of the three terminals in the process of cloud audit is simulated and simulated by the user TPA (third Party Audit), which realizes the goal of data integrity verification in the cloud. Finally, the system is tested, which is divided into function and performance. The function test part shows the normal operation of each module of the system. The performance test carries on the stress test to the client concurrent login and the client concurrent operation through the gradual pressurization way, evaluates the system maximum processing ability.
【學(xué)位授予單位】：南京理工大學(xué)
【學(xué)位級別】：碩士
【學(xué)位授予年份】：2017
【分類號】：TP311.52;TP393.09

【參考文獻(xiàn)】

相關(guān)期刊論文 前6條

1 黃德賢;;云計(jì)算未來在數(shù)據(jù)中心的應(yīng)用[J];中國新通信;2013年14期

2 張利遠(yuǎn);張恩;;基于中國剩余定理的可驗(yàn)證理性秘密共享方案[J];計(jì)算機(jī)應(yīng)用;2012年11期

3 陳蘭香;;一種基于同態(tài)Hash的數(shù)據(jù)持有性證明方法[J];電子與信息學(xué)報(bào);2011年09期

4 劉斌;王最;;Struts,Spring,Hibernate框架在OA開發(fā)中的應(yīng)用[J];計(jì)算機(jī)技術(shù)與發(fā)展;2010年01期

5 單錦輝,姜瑛,孫萍;軟件測試研究進(jìn)展[J];北京大學(xué)學(xué)報(bào)(自然科學(xué)版);2005年01期

6 賀毅朝,劉建芹,陳維海;中國剩余定理在RSA解密中的應(yīng)用[J];河北省科學(xué)院學(xué)報(bào);2003年03期

相關(guān)博士學(xué)位論文 前1條

1 李斌勇;基于云服務(wù)平臺的多聯(lián)盟企業(yè)群協(xié)同技術(shù)研究[D];西南交通大學(xué);2015年

，

本文編號：1603654