| 一种基于协议重构的内外网逻辑隔离方法 |
| |
| 引用本文: | 崔桐,张江涛,郭培胜,赵克俭.一种基于协议重构的内外网逻辑隔离方法[J].电子科学技术评论,2014(3):319-324. |
| |
| 作者姓名: | 崔桐 张江涛 郭培胜 赵克俭 |
| |
| 作者单位: | 中国电子科技集团公司第28研究所,南京210007 |
| |
| 基金项目: | 基金项目:总装预研基金(9140A040413DZ3800001) |
| |
| 摘 要: | 提出了一种基于协议重构的内外网逻辑隔离新方法,通过重构现有公共通信协议,形成专有协议,实现内网专有用户与公共用户隔离。在内网中,公共用户能访问外网,而专有用户与外网“逻辑隔离”。相对于物理隔离方法,这种方法在保证内网安全性能的前提下,满足了内网用户对外信息的需求,提高了信息交流的灵活度;相对于传统协议隔离方法,这种方法投入小、技术风险低,实用性更强。
|
| 关 键 词: | 网络逻辑隔离 协议重构 TCP IP协议 |
Design of the Network Logic Isolation System Based on Re-constructed Protocols |
| |
| Authors: | CUI Tong ZHANG Jiang-tao GUO Pei-sheng ZHAO Ke-jian |
| |
| Affiliation: | (The 28th Research Institute of CETC, Nanjing 210007, China) |
| |
| Abstract: | The internet protocols are reconstructed to form private ones due to structure comparability. Then a novel network logic isolation system is designed based on the re-constructed private protocols. These private protocols are used to realize the network isolation among different security class systems. In inner networks, public users are able to link to the internet, but private users are rejected to send or accept the outer information. Compared with physical isolations, the logic isolation method can present internet servers for inner pubic users, and help information communion and improve the high expandability of the system. Moreover the applied method is cheaper and less risky than traditional logical isolation protocols. |
| |
| Keywords: | network logic isolation re-constructed protocols TCP/IP protocol |
| 本文献已被 维普 等数据库收录! |
