互联网的发展以及互联网技术和地理信息系统的结合,很大程度上改变了地理信息系统从数据收集、信息处理到数据发布和使用的方式,但是由于互联网本身存在的安全问题以及网络攻击的多样性,给地理信息系统的安全问题也带来了极大的挑战。目前虽然存在一些地理信息系统安全问题的解决方案,但是都存在一定的局限性。文章着重解决其中的数据保护问题,首先介绍了地理信息系统中可能存在的安全问题以及国内外的研究现状,接着针对传统地理信息系统安全方案所存在的局限性,提出一种新的结构化数据保护方法。这种应用安全结构通过集中化的应用平台减少系统的数据安全风险范围,基于层次化的细粒度数据访问控制措施防止非法的数据越权访问,并采用精确的行为审计和过程标记机制对非法数据窃密和泄密行为进行快速定位和追踪。通过这种结构化数据保护方法不仅可以阻止重要数据的非法外泄,而且还能够对非IT手段的数据录拍等泄密和窃密行为进行有效威慑。%The development of Internet and the combination of Internet and GIS have changed GIS greatly in the way of the data collection, information processing to data publication and use. However, the security risk of internet and the diversity of network attacks bring challenges for ensuring GSI’s security. Although there are some solutions to these problems, they can’t be widely utilized because of their limitations. In this paper the authors focus on solving the problem in data protection. Firstly, possible safety problems of GIS and current research situation will be brielfy reviewed. Then, a new structured data protection method will be proposed to overcome the limitations of traditional GIS security scheme. According to the results, our method can reduce the risk of data security by a centralized application platform. Also, a fine-grained data access control can prevent unauthorized access. Moreover, the date theft behaviors can be quickly tracked by the delicate behavior audit and process marking. Through our structured data protection method, the illegal disclosure of important data can be prevented while the espionage can be deterred.
展开▼
