The Design And Application Of National Tax Network And Information Security Emergency Management System

In order to implement the "Opinions of the national information leading group on strengthening the work of information security," and the requirement of "tax system, network and information security emergency response guidelines(Trial)", To strengthen the management of computer equipment, network and information security emergency response, to improve the ability to prevent and deal with unexpected incidents and disasters, recording and analyzing the whole process of the prevention and treatment of computer emergency, improve the emergency response mechanism,and make full use of the resources available, to form a highly efficient and rapid response system for the prevention, prevention, treatment, evaluation and improvement of convergence.Classified management of the basic information of the computer emergency response plan, organization, personnel and material resources and computer emergency response information. When the emergency event occurs, convenient computer safety supervision personnel and emergency command personnel in accordance with the computer emergency plan requirements for rapid implementation of the response work, and provide effective information for the assessment and improvement of the emergency incident afterwards.This system mainly includes computer emergency laws and regulations management, emergency management, emergency level management, information management of emergency organization, emergency rescue personnel(emergency experts), information management, emergency supplies and equipment information management, emergency early warning, response, assessment evaluation and management. Among them, the main equipment of the computer(server) for automatic inspection, automatic release of emergency warning.System is based on the SNMP(Simple Network Management Protocol), it used of open source SNMP4 J components to collect network equipment and server information, it used of JAVA’s HTTP and FTP’s agent test HTTP and FTP state, by the way of external links server to collect the automatic virus infection informations of Rising antivirus software server, Use the JAVA database connection interface to collecte and monitor the situation of network and security, combined with manual collection methods, Combined with the manual collection method, the network and security event warning, alarm, disposal and report information are collected. Form a network with real-time security monitoring, automatic or manual alarm, recording the disposal process and produce various reports, SMS and other media to achieve an integrated alarm monitoring and processing platform.