中文摘要：

由于Intemet是个开放的网络，为了保证内部网络数据的安全，需要对Intemet和内部网络进行隔离。但物理隔离会对内部网络中的用户在工作时获取Intenet中数据造成不便。文章通过对内部网络的工作需求进行分析，从网络存储加密代理和接入认证等方面进行研究，设计了一种基于网络存储加密代理的内部网络安全防护技术，保证了内部网络中数据的安全，同时减轻了获取Intemet中数据的不便。

英文摘要：

Internet is an open network. It＇s necessary to isolate Intranet from Internet, in order to ensure the data security of Intranet. However, the physical isolation would cause problems with the requirement that the Intranet users acquire their necessary data from Internet. In this paper, we first concentrate our analysis on the working requirements of lntranet. We then focus on the technology of network storage encryption agent and access authentication. According to these, we design a safeguarding technique of Intranet based on network storage encryption agent, in order to ensure the data security of Intranet, and reduce the inconvenience of acquiring necessary data from Internet.