摘要： 提出全国数据大集中环境下银行综合业务系统信息安全的解决方案，介绍信息安全系统的架构、主要功能和关键技术，包括层次密钥管理、数据认证码、报文认证码、柜员及客户身份认证。该系统已在某国有商业银行的全国数据集中工程N21-Core Bank系统中实施，运行效果良好。

关键词: 信息安全, 密钥管理, 数据认证码, 报文认证码, 共享内存

Abstract: This paper presents a solution of the integrated operation system security of commercial bank in data concentration environment. It introduces the framework of information security system, the main function and some key technological problems, including the design and implementation of hierarchy key management, Data Authority Code(DAC), Message Authority Code(MAC) and so on. The solution has been successfully implemented in N21-Core Bank countrywide of a large-scale commercial bank and runs well.

Key words: information security, key management, Data Authority Code(DAC), Message Authority Code(MAC), shared memory

中图分类号: 

• TP309