The Security Research on Online Enrollment Management System
|Keywords||Information Security Classified Protection Baseline Requirements Information System Evaluation|
With the speeding up of the overall process of our country’s economic and social development’s informationization, the degree of our country’s informationization has been leveled up, the important information systems in field which has a close connection to people’s livelihood has become national critical infrastructure. The security of this basic information networks and critical information systems has played an important part in national security, social stability and the vital interests of the masses. At present, the security of our country’s basic information networks and critical information systems has been in a very serious situation which facing both external threats and the vulnerability and weakness of themselves. Criminals make use of some security vulnerabilities, use viruses, Trojans, phishing and other technology to conduct network theft, online fraud, online gambling and other crimes and this seriously infringed the country’s economic order, social management order and the legal rights of citizens. In addition, the basic information networks and critical information systems has been facing serious security risks, the foundation of information security work is weak, the awareness of information security and ability to protect information security is weak, the construction an administration of information system security lacks of regulation and standards, the regulations and measures to protect information security is not implemented, the regulatory measures in not in place and those phenomenon are common.In the face of the complex and grim situation of information security, once the basic information networks and critical information systems issue a large information security problem, not only the unit and the industry are affected, but also national security, social stability and economic development are directly threaten. The international battle focus on information access, use, control is increasing fiercely, maintaining the national security and interest in cyberspace become major strategic issues in the information age. It requires that we must grasp the world development trend of information technology quickly, promote the economic and social informationization actively, ensure the information systems to be fully protected and the information security management system is sound and effective.In the work of information security, the work of classified protection is the latest way and method in the national information security protection affairs. Its core method is to classify the information systems according to their importance, establish baseline requirements of different intensity according to different classified levels and form a most basic protection to information system according to baseline requirements. Based on the above concept, this article adapt the standards for classified protection baseline requirements to evaluate the security status of a web student enrolling information system, analyze its compliance status according to actual situation, obtain the protection status of this information system and combined with standard for classified protection baseline requirements to point out the inadequacies of security protection of the information system and gives the train of thought to solve it.