论文部分内容阅读
网上交易安全改造目标经过与《证券公司网上证券信息系统技术指引》对照分析和行业安全案例,我们目前所使用的软件商提供的网上交易系统有多项不能完全符合指引的要求。在系统架构、客户身份认证、客户端安全、服务器端的唯一性提示等八个方面进行改造。具体内容如下:(1)要重新构建网上交易的安全认证中心,设立安全认证数据库,改变过去仅凭交易帐号和密码进行客户认证的方式。提供更高安全的登录认证方式。(2)建造类似于网上银行的个人证书认证系统(CA),对重要客户采用硬件证书,保证他们的网上交易安全,并且可以提供基于证书的一些高端业务。(3)对普通客户,为减少成本,构建与计算机绑定的客户认证
Objectives of Online Transaction Security Reform After comparing with the “Security Guidance for Securities Companies on the Internet Securities Information System Technology” and the industry security case, there are a number of online trading systems we currently use for software vendors that can not fully comply with the guidelines. In the system architecture, customer authentication, client-side security, server-side unique prompts and other aspects of transformation. The details are as follows: (1) To reconstruct the security authentication center for online transactions, set up a security authentication database and change the way of using the account number and password to authenticate clients in the past. Provide a more secure login authentication method. (2) Build a personal certificate authentication system (CA) similar to online banking, adopt hardware certificates for important customers, ensure the security of their online transactions, and provide some high-end certificate-based services. (3) For ordinary customers, in order to reduce costs, build a computer-bound customer certification