通过对电子文件安全威胁进行分析,综合考虑文件生命周期各阶段不同的安全需求,遵循完整性、保密性、可用性的设计原则,建立了文件安全保障模型.在此基础上,针对企业内部普遍存在的文件安全问题,构建了包括文件结构安全策略、物理及环境安全策略和文件输出安全策略的文件安全保障体系,并提出一套保障文件安全的综合解决方案.%The electronic file security model was established by analyzing the security threats of electronic file after considering different security demands of each stage in file lifecycle, following the integrity, confidentiality and availability principle. The file security policy system is constructed to solve file security of the enterprise, which includes file structure security policy, physical and environmental security policy, file transmission security policy, and a set of integrated solutions for document security protection proposed.
展开▼