【正文】 子政務(wù)安全支撐平臺(tái)是電子政務(wù)運(yùn)行的安全保障，依靠 VPN 技術(shù)、PKI 技術(shù)、信息分級(jí)分域存儲(chǔ)、等級(jí)化訪問控制、網(wǎng)絡(luò)入侵檢測(cè)等技術(shù)進(jìn)行搭建，依托河南省電子政務(wù)基礎(chǔ)設(shè)施所頒發(fā)的數(shù)字證書，保證域內(nèi)、域間的網(wǎng)絡(luò)安全，保證與應(yīng)用相關(guān)的信息和數(shù)據(jù)安全。關(guān)鍵詞：電子政務(wù)，信息安全，等級(jí)保護(hù)，虛擬專網(wǎng)，公鑰基礎(chǔ)設(shè)施II / 61AbstractWith the development of electronic government construction, the system security bees an urgent problem. Especially, the information security is the foundation of egovernment construction. The egovernment information security scheme ensures the secrecy, the integrity and the usability in the information storage, processing and transmission, ensures egovernment reasonable application and has the orderly running.Focusing on the application topic of national experimental city Jiyuan egovernment construction scheme, this article thoroughly analyzes its security system and put forward an egovernment security scheme. The scheme is a municipal egovernment security architecture on the basis of the inter. It is made up of three parts: the Inter, the security supporting platform and the application system. The Inter offers the system interconnections. The egovernment security supporting platform and application system is on the basis of the Inter. The security supporting platform guarantees egovernment running. It is built by the technologies such as VPN, PKI, the different degree and area store technology, grading access control and work invading detection, relies on digital Certification Authority issued by Henan provincial egovernment infrastructure and ensures work security in the domains and interdomains, information and data security. The application system is on the basis of the security supporting platform. In the scheme’s realization, the article also puts forward the technological demands of related equipments and system, ranks the system security properties, analyzes the potential security risk and puts forward work deploy demands on system applications.This article explores a new mode and method of municipal egovernment security on the basis of the inter and provides some experiences for other municipal egovernment constructions in the future.Key words: Egovernment, Information Security, Ranking Protection, Virtual Private Network, Public Key Infrastructure III / 61目 錄摘 要 ...............................................................................................................IAbstract...........................................................................................................II1 緒論 課題背景 ...............................................................................................(1) 國內(nèi)外研究概況 ...................................................................................(2) 論文的主要研究內(nèi)容 ...........................................................................(5)2 電子政務(wù)信息安全相關(guān)理論和技術(shù) 虛擬專網(wǎng)(VPN) .....................................................................................(6) 公鑰基礎(chǔ)設(shè)施(PKI) ..............................................................................(9) 加密技術(shù) .............................................................................................(12) 信息安全等級(jí)保護(hù) .............................................................................(16) 信息分級(jí)分域存儲(chǔ) .............................................................................(17) 入侵檢測(cè)技術(shù) .....................................................................................(17) 小結(jié) .....................................................................................................(19)3 系統(tǒng)方案的設(shè)計(jì) 設(shè)計(jì)的目標(biāo)和原則 .............................................................................(20) 電子政務(wù)系統(tǒng)體系結(jié)構(gòu) .....................................................................(22) 安全支撐平臺(tái)體系結(jié)構(gòu) .....................................................................(23) 系統(tǒng)組成框圖 .....................................................................................(25) 互聯(lián)網(wǎng) .................................................................................................(25)IV / 61 電子政務(wù)安全支撐平臺(tái) .....................................................................(26) 電子政務(wù)應(yīng)用系統(tǒng) .............................................................................(29) 小結(jié) .....................................................................................................(29)4 系統(tǒng)方案的實(shí)現(xiàn) 電子政務(wù)系統(tǒng)網(wǎng)絡(luò)部署 .....................................................................(31) 有關(guān)設(shè)備或系統(tǒng)主要安全技術(shù)要求 .................................................(35) 應(yīng)用系統(tǒng)信息安全等級(jí)劃分 .............................................................(38) 安全風(fēng)險(xiǎn) .............................................................................................(43) 小結(jié) .....................................................................................................(47)5 總結(jié)致 謝 .........................................................................................................(49)參考文獻(xiàn) .....................................................................................................(50)1 / 611 緒論 課題背景電子政務(wù)(Electronic Government) 是政府在其管理和服務(wù)職能中運(yùn)用現(xiàn)代信息和通信技術(shù)，實(shí)現(xiàn)政府組織結(jié)構(gòu)和工作流程的優(yōu)化重組，超越時(shí)間、空間和部門分隔的制約，全方位地向社會(huì)提供優(yōu)質(zhì)、規(guī)范、透明的服務(wù)，是管理政府手段的變革[1]。中辦發(fā)[2022]27 號(hào)文件《國家信息化領(lǐng)導(dǎo)小組關(guān)于加強(qiáng)信息安全保障工作的意見》出臺(tái)以來，國信辦就文件的宣傳貫徹做了大量的工作，為我國各地做好信息安全保障工作提供了很好的政策和技術(shù)支撐。近幾年，濟(jì)源市把信息化作為促進(jìn)經(jīng)濟(jì)發(fā)展的重要舉措，信息化建設(shè)取得了長足進(jìn)展。濟(jì)源市轄 8 鎮(zhèn) 4 鄉(xiāng) 4 個(gè)街道辦事處，整體規(guī)模較小，每年傳遞的涉密信息不到總信息量的 3%?；ヂ?lián)網(wǎng)作為一個(gè)開放的網(wǎng)絡(luò)環(huán)境，在安全方面先天不足，存在著諸多隱患，數(shù)億網(wǎng)民成分十分復(fù)雜，基于互聯(lián)網(wǎng)的電子政務(wù)建設(shè)面臨著政務(wù)信息失泄密、非法篡改、身份假冒等安全威脅。通過本次試點(diǎn)項(xiàng)目，綜合運(yùn)用多種信息安全技術(shù)，為電子政務(wù)搭建更合理、更方便、更完善的安全平臺(tái)。美國在 2022 年 6 月 6 日－ 6 月 30 日，用了二十天的時(shí)間完成了建設(shè)電子政府的全部立法程序，被喻為“第二次美國獨(dú)立革命” ，并將在 2022 年前后最終進(jìn)入電子政府時(shí)代 。3 / 61國外電子政務(wù)信息安全的主要發(fā)展趨勢(shì)歸納如下：1) 網(wǎng)絡(luò)攻擊將是西方國家必須重點(diǎn)防范的恐怖方式，國際合作會(huì)更加緊密。預(yù)計(jì)世界各國將進(jìn)一步完善管理層面的改革，將其作為國家信息安全政策的“重中之重” 。近年來，網(wǎng)絡(luò)病毒和黑客給全球帶來了數(shù)千億美元的經(jīng)濟(jì)損失，作為兩個(gè)“傳統(tǒng)”的全球性信息安全問題，在過去的幾年中仍然是信息安全領(lǐng)域的兩大熱點(diǎn)。各國的信息保障概念將融入實(shí)際應(yīng)用當(dāng)中，各國建立的各種具體信息安全保障體系和體制將進(jìn)一步落到實(shí)處，進(jìn)入實(shí)際運(yùn)轉(zhuǎn)狀態(tài)，不僅系統(tǒng)的安全性，其運(yùn)行的質(zhì)量和可靠性將隨著信息安全保障的實(shí)施一并受到重視。 近幾年的網(wǎng)絡(luò)與信息安全事件徹底改變了我國信息安全狀況，促進(jìn)了全社會(huì)對(duì)該問題的重視和關(guān)注，并極大地刺激了政府對(duì)網(wǎng)絡(luò)與信息安全的管理，從而徹底改變了國家對(duì)網(wǎng)絡(luò)與信息安全的認(rèn)識(shí)和策略。從而，以信息資源管理為核心