| IPSEC VPN的PAD增强设计的研究与实现 |
| |
| 引用本文: | 周晓东,唐佳佳,陆建德.IPSEC VPN的PAD增强设计的研究与实现[J].计算机应用与软件,2008,25(5):56-58. |
| |
| 作者姓名: | 周晓东 唐佳佳 陆建德 |
| |
| 作者单位: | 苏州大学计算机学院,江苏省计算机信息处理技术重点实验室,江苏,苏州,215006 |
| |
| 摘 要: | 现有IPSEC VPN系统的逻辑结构存在的不足是IKE配置复杂,访问证书或密钥管理机构的不完善,SPD和IKE之间也缺乏联系.引入PAD(Peer Authorization Database)的概念,在IPSEC VPN安全策略数据库SPD和安全关联管理协议IKE之间提供连接,从管理及安全方面对原有IPSEC VPN体系结构进行了PAD增强设计,并给出了相应的实现框架.
|
| 关 键 词: | IPSEC VPN PAD SPD IKE |
| 修稿时间: | 2006年7月27日 |
STUDY ON PAD ENHANCED DESIGN IN IPSEC VPN AND ITS REALIZATION |
| |
| Zhou Xiao-dong,Tan Jia-jia,Lv Jian-de.STUDY ON PAD ENHANCED DESIGN IN IPSEC VPN AND ITS REALIZATION[J].Computer Applications and Software,2008,25(5):56-58. |
| |
| Authors: | Zhou Xiao-dong Tan Jia-jia Lv Jian-de |
| |
| Affiliation: | Zhou Xiaodong Tan Jiajia Lv Ji,e(School of Computer,Soochow University,Jiangsu Province Computer IT Key Lab,Suzhou 215006,Jiangsu,China) |
| |
| Abstract: | The complexity of IKE configuration,the flawed mechanism of certificates access or key management and the lack of association between SPD and LKE are the limitations of the logical structure for current IPSEC VPN.The paper introduces the concept of PAD(Peet Authorization Database) which provided the link between the security policy database SPD and internet key exchange IKE.A PAD-enhanced design was made against original IPSEC VPN architecture from management and security viewpoint and an appropriate implem... |
| |
| Keywords: | IPSEC VPN PAD SPD IKE |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
