中文摘要：

为保证内网的信息安全,对身份认证、文件加密、USB存储设备控制等内网安全关键技术进行深入研究,提出一种基于Ukey的解决方案。该方案在Ukey中置入不同种类的密钥,结合各种过滤驱动程序,通过客户端系统的控制,来实现对内网用户的双因素身份认证、资源的灵活访问控制、硬盘数据的保护以及内网专用USB存储设备的管理。该方案可有效弥补目前已有内网安全管控平台存在的不足。

英文摘要：

In order to safeguard information in a local area network,a thorough research is done on critical technologies of Intranet SMP such as identity authentication,file encryption,USB storage device control,etc.A Ukey-based solution is proposed.According to the solution, various kinds of encryption keys are written to the Ukey,which cooperate with various filtration drivers and are controlled by client systems to realise dual factors identity authentication,flexible access control of resources,protection of data on the hard-drive and the management of USB storage devices specified for the local area network.This solution can remedy the weaknesses of present Intranet SMP on the market.