The H3C government special cloud platform is based on the H3CVCF virtual fusion architecture. Through modular hierarchical design, while ensuring high reliability, easy expansion, the network, security of network, safe virtualization and automation technology, to achieve infrastructure Service automation delivery.
First, scheme overview
Smart government is cloud computing, SDN network, Internet of Things and other technologies, through monitoring, integration, analysis, intelligent response, realizing high integration of various resources of various functions, improving government business handling and management efficiency; strengthening functional supervision The government is more integrity, diligent, pragmatic, and improving the transparency of the government; forming a new government of efficient, agile, convenience, ensuring the sustainable development of cities, and establish a good urban living environment for companies and the public.
Second, the program introduction
To meet the needs of the government to provide public services, build open, integration, efficient, transparent, green, safe service type, H3C, through the hard work of the government industry, deep understanding of the key needs of the government industry, targeted Introduce Wisdom Government Solutions. The solution includes not only basic network deployment, covering the three-dimensional security planning, government cloud computing construction, and the government's cooperative office. In the entire new IT construction, the cloud network is integrated into an infrastructure, supporting the underlying data access transmission, the upper business interoperability, and the data processing of the business platform, can simultaneously protect the efficient operation of massive business data, network resources and security guidelines. Smooth evolution and the application-oriented definition can change.
Figure: H3C Wisdom Government Structure
Third, the program highlights
(1) Government Cloud Platform
Traditional government cloud projects are usually the model of the government to commit self-built, self-use, self-operated, from infrastructure, hardware platform, and software platform to operation and maintenance. It is a government unit to do itself. Suppliers sell corresponding hardware and software product. Unlike traditional projects, the H3C government cloud platform construction uses the model of buying cloud services, and the bureaus will no longer pay attention to the construction of the infrastructure hardware and software platform, but to the cloud service provider rental resources, directly Deploy government business applications on cloud resources. China Sanxin letter to cloud service providers provide overall solutions and products of cloud platform (IAAS). The H3C government special cloud platform is based on the H3CVCF virtual fusion architecture. Through modular hierarchical design, while ensuring high reliability, easy expansion, the network, security of network, safe virtualization and automation technology, to achieve infrastructure (Computing, network, storage, security) services are fully automated.
The overall framework of the system is divided into the following parts:
1. Cloud service portal: Provide service catalog, including cloud main machine, cloud storage, cloud database, cloud load balancing, cloud security, etc., and corresponding account opening, tenant network, etc.; users of the bureau office can be approved by business applications Deployment needs, select the corresponding service item on this portal to apply for approval.
2, Cloud Platform Resource Orchestration: When the cloud service is applied for approval, the cloud platform will create the corresponding virtual resources, and implement unified editing of cloud service resources such as calculation, storage, network, security, database, load balancing, for each The Office is committed to constructing a virtual data center, and users can flexibly configure the corresponding subnet, router, load balancing and security access strategy as in their own data centers. The virtual data center commissioned by each department is isolated, ensuring the safety of the infrastructure layer.
3. Full security solutions for government affairs: Government Cloud Security is a content that is very valued by provincial government, and the H3C government cloud platform provides a comprehensive security solution. Divided into the following four parts:
(1) Infrastructure layer safety isolation
On the basis of the conventional host, the security reinforcement is stored, the reinforcement of the network layer is enhanced. Virtualization technology is the basic support of the infrastructure multi-tenant isolation. Through the deployment of the VxlaNoverlay network virtualization scheme, the virtualization of the network connection is truly realized, and one or more Overlay subnets are virtualized for each tenant on the same physical bearing network, and the security isolation of the network layer is realized.
(2) Cloud security access
Follow the VPN division of the province's government outside the province to ensure the security of the network access to the bureaus.
(3) Cloud security service
Including the security of IAAS, PaAS, and SaaS layer services, the first phase of the project is safe to deploy IAAS, providing cloud firewall, cloud load balancing, DDoS traffic cleaning, safety scanning.
(4) Cloud security management
Including daily operation and maintenance safety rules, emergency response mechanisms and processing processes, deployment and adjustment, log analysis and industry audit of tenancy security strategies. By cloud security management to clarify the boundary between cloud service providers and tenants.
(2) Administrative Parallel Approval System
Changing the previous administrative examination and approval unit in order to conduct administrative examination and approval in order to conduct an approval of two or more departments, the administrative examination and approval model of the central (department or window) is implemented, organized by the administrative examination and approval of each responsible departments. Do "a window acceptance, parallel approval, unified charge, limited time to pay".
(3) Administrative external service portal
For the public, enterprises provide a one-stop external service window, which releases various policies and regulations, government work, service information, online declaration, complaint suggestions, is a window of the government and the public's exchange interaction.
(4) Electronic monitoring system
Through the summary examination and approval of business monitoring data, the relevant data statistics, analysis and query is completed, real-time monitoring, early warning error correction, complaint processing, performance evaluation, and information services. It is conducive to the transformation of administrative supervisory by post-absence to the prior, things, afterward monitoring, and realizing the transformation of administrative examination and approval from internal to public operations, which is conducive to deepening government affairs disclosure, improving work transparency and management efficiency, and promoting organs. Integrity construction.
(5) Public opinion system
According to the specified keyword and target website, the relevant information is grasped, collect the most authentic information feedback from mainstream media, communities, and forum netizens at home and abroad, and conduct scientific screening, quantitative statistics and analysis of network public opinion data, for the government Scientific decision-making provides a basis.
(6) Intelligent Office Platform
The daily work of process approval, work delegation, message management, work arrangement, and instrument printing, etc., facilitates the use of government departments. It can automatically optimize user interface, system function, etc. according to the duties, preferences, frequencies of civil servants. The intelligent office system has automatic reminders, such as generations remind, email reminder, meeting notice reminder, etc., civil servants don't need to query what needs to be handled.
(7) Document management system
Document management can achieve full lifecycle management of document data, solve the following problems in traditional document management: difficulty in massage document management; document version management confusion; document security lacks protection; documentation cannot effectively cooperate sharing; knowledge management should be difficult to share.
Responsible Editor: gt
Our other product:
