【作者】 甘泉；

【导师】 于津；

【作者基本信息】 汕头大学 ， 计算机软件与理论， 2002， 硕士

【摘要】 电子商务是互连网应用发展中的一个重要领域，也是国际金融贸易中越来越重要的经营模式。电子商务的核心问题是安全问题。 本文首先对电子商务中的安全问题及其安全策略进行了分析，并在此基础上总结出了电子商务数据安全模型。该模型从系统的角度对电子商务中的安全措施进行了有机的结合，使各项安全措施之间发挥最佳互补作用，从而有效地提高了电子商务系统的整体安全性。 防火墙技术是解决电子商务安全问题的关键技术，本文对防火墙技术进行了深入的研究，提出了防火墙技术参考模型。根据该模型，本文设计了一个防火墙原型系统，该系统提供了一个适合用户安全策略的网络安全访问机制，它由以下三个部分组成：包过滤路由器，用来提供网络层一级的安全访问机制；代理服务器，用来提供应用层一级的访问控制机制；认证服务器，用来提供用户身份认证。其中，本文将智能机制与包过滤机制相结合，通过推理机和知识库对包过滤规则进行智能化控制，实现了智能型包过滤路由器；在代理服务器部分，本文引入Petri网模型对FTP代理服务器功能进行形式化描述并给出其具体设计方案；最后，本文将一次性口令系统运用于认证服务器，并对其进行了详细的设计。更多还原

【Abstract】 Electronic commerce is a famous application on the network today. It becomes more and more important in the international trading. Security is the key problem in the electronic commerce.hi this paper, we firstly analyze some security problems and the security methods in electronic commerce, and then we present a secure data model in electronic commerce. In this model we made the security measure combined organically. Consequently the whole security in electronic commerce system can be improved.The firewall technology is a key technology to solve the security problems in electronic commerce. In this paper, we give a deeply study in the firewall technology and present a reference model of firewall technology based on witch; we develop a firewall prototype system. The system makes a network security access mechanism suitable for user’s security policy, including three parts: package filtering router: offering security access control in network layer; proxy server: used for security access on application layer; authentication server: used for authentication of user’s identity. In this system the packet filtering rules are controlled intelligently by combining the intelligent mechanism with the package filtering mechanism; to the proxy server, we develop a FTP proxy server decrypting witch with petri net model; lastly, OTP authentication are applied in authentication server.更多还原