Data Security Protection Mechanism of Railway Cloud CAD System
Considering the business requirements of railway engineering,and in view of the inconsistency between cloud architecture CAD and traditional CAD in storage mode,data transmission,collaborative design,etc.,a data security guarantee system for railway cloud CAD system is established based on a secure computing environment,guaranteed by regional boundary security and communication network security,and centered on a security management center.Moreover,such technologies as audit tracking,role-based access control,encrypted data transmission and traffic probe,as well as multi-copy cluster strategy are introduced.For data integrity,a proof model with"user-third party audit-cloud service"as the main body,and algorithm verification mechanisms such as key generation,signature algorithm,challenge generation,evidence generation and evidence verification are adopted.The scheme has been demonstrated and verified on Xi'an-Shiyan High Speed Railway,effectively ensuring the security and integrity of data and supporting users to carry out safe collaborative design and encrypted data transmission at any place.
NETL
NSTL
万方数据
维普
