System security architecture

The security of airborne geophysical database system is mainly to divide the security level and architecture of information system according to the hierarchical structure of network system (Figure 3- 1). Take corresponding security technology for some weak links, so that the system can resist all kinds of attacks against various objects from inside or outside and prevent the spread of harmful information; It can provide strict control ability and efficient verification means, and realize a safer working and management mechanism than the existing working mode; Classified and hierarchical management of * * * enjoyment information, digital certificate based on public key, strict authorization management and audit management mechanism ensure the security of the system.

Figure 3- 1 System Security Architecture Diagram

Physical security: entities are mainly computer equipment, network equipment and storage equipment to prevent damage caused by accidents such as earthquakes, floods and fires and man-made crimes.

System security: the data server runs in UNIX system, and the UNIX operating system meets C2-level security standard; At the same time, UNIX system provides corresponding backup and recovery mechanism to meet the security requirements of aviation geophysical information system.

Network security: The Central Network Department ensures the security of network operation through authentication of network transmission, firewall, intrusion detection and examination and analysis of suspicious information.

Data security: Oracle database has C2-level security standard, which fully meets the storage security requirements of aviation geophysical database. In addition, the system also provides data access, important data encryption, data log tracking and data backup functions to ensure the security of database data.

Use security: the use security of this system is controlled through user authentication and system function authority.