| 基于C/S模式的内网应用系统安全构架的分析与设计 |
| |
| 引用本文: | 鲁慧,张卫. 基于C/S模式的内网应用系统安全构架的分析与设计[J]. 计算机应用与软件, 2008, 25(1): 241-243,260 |
| |
| 作者姓名: | 鲁慧 张卫 |
| |
| 作者单位: | 华东师范大学计算机科学技术系,上海,200062 |
| |
| 摘 要: | 提出为当前许多基于C/S模式的内网应用系统提供安全机制的必要性,简要介绍了SSL协议的组成和特点,通过对内网应用系统安全威胁以及安全性需求分析,提出了结合用户登录信息和密钥管理机制的客户端认证机制,并改进了SSL握手协议和记录协议,最终为此类应用系统设计并实现了一套较为完整的安全模块.
|
| 关 键 词: | 内网应用系统 C/S模式 安全套接字层 安全构架 客户端认证机制 |
| 收稿时间: | 2006-02-27 |
| 修稿时间: | 2006-02-27 |
ANALYSIS AND DESIGN OF SECURITY ARCHITECTURE FOR C/S BASED INTRANET APPLICATION SYSTEM |
| |
| Lu Hui,Zhang Wei. ANALYSIS AND DESIGN OF SECURITY ARCHITECTURE FOR C/S BASED INTRANET APPLICATION SYSTEM[J]. Computer Applications and Software, 2008, 25(1): 241-243,260 |
| |
| Authors: | Lu Hui Zhang Wei |
| |
| Affiliation: | Lu Hui Zhang Wei(Department of Computer Science , Technology,East China Normal University,Shanghai 200062,China) |
| |
| Abstract: | The necessity to provide security mechanism for C/S mode based intranet application systems is pointed out. A brief introduction to the components and characteristics of SSL protocols is presented, and the security threats and requirements of the systems are analyzed. A client authentication mechanism is built upon key management mechanism and the logging in information of users. SSL handshake protocol and record protocol are improved. A complete set of security module is designed and implemented for intranet application systems. |
| |
| Keywords: | Intranet application systems C/S mode SSL Security architecture Client authentication mechanism |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
