| The security of network banks is always a key topic among users and people in theindustry. With the business of network banks develops rapidly in recent years, theopenness of Internet brings new security challenges to the operators, among whichhacking and identity authentication are the major ones.In this paper, we analyze the security demands of network banks according to thesecurity threats that operators face, then design and implement a safe protection systemfor network banks based on the division of areas. This system divides network resourcesinto some areas for security management based on a certain rule. Throughout the areadivision, network topology becomes more reasonable and network boundary becomesclearer, which lays the groundwork for building agile safe protection mechanism. Onthese bases, we further deploy some safe protection measures such as IDS, IdentityAuthentication System on dynamic password, Maintaining and Auditing System,Vulnerability Management System and so on, according to the functional property andsafe protection level of each area. Then we build up a relatively integrate securityprotection architecture.This system has been tested and trial operated in the network bank of some area. Itis proved to meet the security requirement of network banks. It is designed reasonably,operated steadily and it has good extensibility. |
PDF Full Text Request