Journal of Information Security Research ›› 2015, Vol. 1 ›› Issue (1): 74-80.

Previous Articles     Next Articles

Research on Security Technology Framework of Mobile E-government System


  1. State Information Center, Beijing 100045, China
  • Online:2015-10-05 Published:2016-01-18



  1. 国家信息中心 信息与网络安全部 北京 100045

Abstract: The mobile e-government is a kind of low-carbon office styles, which is flexible and less energy consumption. It is the inevitable trend of efficient government. By mobile office, each government worker can complete his task at any time or place through any authorized mobile terminal. At the same time, he must face all kinds of security risks in the open office environment without special security requirements. To reduce the security risks, a security technology framework of mobile e-government system is proposed which includes mobile terminal security, transmission security, mobile access security,and server security. Four components of the security framework are described in detail according to from different security requirements and security technologies. The basic structure of mobile e-government system is summarized in order to explain the framework. And, the existing mobile office system solutions are also analyzed in detail which include two designs based on APP and application virtualization. Finally, the key of implementing mobile e-government system is given. In the actual mobile e-government project, the application of this framework is shown to significantly reduce the security risk.

Key words: mobile e-government, security risk, security framework, mobile terminal securitytransmission security, mobile access security, server security

摘要: 电子政务移动办公是一种灵活、能耗少的低碳办公模式,也是构建高效服务型政府的必然趋势。利用移动办公,政府办公人员可以摆脱时间和空间的束缚,在任何时间、任何地点通过任何授权的移动终端进行任何相关业务的处理,但同时也面临着没有统一安全要求的开放办公所带来的安全风险。为有效降低和控制移动办公的安全风险,从移动电子政务的现状出发,以电子政务移动办公系统的基本结构为基础,通过对已有的移动办公解决方案和电子政务移动办公系统面临的主要安全风险进行总结和分析,提出了由移动终端安全、信道安全、移动接入安全、服务端安全四个部分组成的电子政务移动办公系统整体安全框架,以及建设实施电子政务移动办公系统的关键点所在。

关键词: 移动电子政务, 安全风险, 安全框架, 移动终端安全, 信道安全, 移动接入安全, 服务端安全