With the gradual deepening of camp她火us digitization and information constr機森uction, the integration of various in飛化formation resources on campus has e視農ntered the stage of comprehensiv國們e planning and implementation, such as 西計campus one card in combination with th知人e ongoing construction of identity au算資thentication, personnel, student and雪為 engineering MIS and applicati討和on systems. Through the common 舊章identity authentication mechanis車費m, realize the integration and 線訊sharing of data management, and make t影我he Campus All-in-one Card system a化美n organic part of campus information c日件onstruction. Through this organic combi多關nation, it lays a foundation for resour務要ce sharing among systems.
The high concentration of informatio暗件n makes the security of data mo門業re and more valued. As an education 秒筆industry related to the rise and 化上fall of the country, once the data is l放畫eaked, it will have a negative impact 自妹on the society and become a ho船雪t issue concerned by public opini藍拿on and the media. Driven by the huge c國藍ommercial interests, the databa你筆se of the education industry ha如村s to face the double folder of inte我放rnal and external threats, especia子舊lly the illegal "invasion" for the p去很urpose of business, which not only是飛 has a serious impact on the publi人讀c image and authority trust of 白還the school, but also divulges pers雪下onal information, damages the perso他山nal interests of students, and 她光adds disharmony to the cause of edu明知cation.
Combined with the current secur他你ity situation faced by the informa裡得tization development of colleges a愛得nd universities, there are mainly秒器 the following risks in operation and m我技aintenance management: 是海
1. Management status: the IT system sup南現porting the operation of the universi舞黃ty industry is mainly composed of a lar城區ge number of network equipment, 花低host system and application sys錯技tem. These equipment and systems b新民elong to different departments from the唱外 perspective of application. The 離還network equipment and host system h購話ave independent user management書也, authentication and authorization房熱 and audit systems respectively, Diff民亮erent system administrators are respo熱章nsible for the maintenance and manage那舊ment. When facing these systems, t音聽he work of maintenance personn為來el is very complex;
2. Unclear authorization: in this u章行niversity industry system, the prin如腦ciple of user minimum authority allo答農cation in the best practice of 你暗it operation and maintenance cannot be老土 strictly implemented due to the sepa道農rate authorization of each system如影. At the same time, with the increas光頻e of business systems and users拍就, the user authorization management be女內comes quite complex and the system 民有security is threatened;
3. Hidden dangers of shared accounts: 在司in order to reduce the complexit自算y and difficulty of management, some a姐睡ccounts are shared by multiple p快購eople, the proliferation of these ac紙謝counts is not easy to control, an商林d security accidents often occur due to校舊 such account sharing;
4. Hidden danger of simple passwo黑術rd: for maintenance personnel, frequent都讀 system switching requires enterin白姐g user names and passwords of different得呢 systems for login. In order to facil小呢itate memory, maintenance personnel票資 often use relatively simple passwo年說rds or multiple systems use the sam對熱e password. In case of emergency, they了匠 may also share their user name雜爸s and passwords with others, These 答很all pose a great threat to the security公冷 of the whole system;
5. Lack of centralized log aud年報it: due to the independent oper術亮ation of each system, the system ope地行ration log and operation audit o吧懂f maintenance personnel can only be ca友到rried out independently by system. I信麗n case of system failure, the problem刀從s must be investigated system b微謝y system, and unified and central但件ized problem investigation cannot報好 be carried out, which greatly reduces區到 the work efficiency and leads to th少麗e possibility of loss expansion.