| 企业内网安全模型研究与设计 |
| |
| 引用本文: | 刘宏义. 企业内网安全模型研究与设计[J]. 现代电子技术, 2007, 30(24): 160-162 |
| |
| 作者姓名: | 刘宏义 |
| |
| 作者单位: | 西安陆军学院,战斗实验室,陕西,西安,710108 |
| |
| 摘 要: | 内网安全是近年来逐渐被人们所重视的网络信息安全研究领域。通过分析企业信息网内部存在的主要安全隐患,提出了以基于角色的访问控制为基础,包括安全基础、安全建模、安全应用3个概念层次的内网安全模型。其中,安全基础层通过统一资源表示法、用户身份认证、用户权限赋予等技术完成内网资源的分类与分配;安全建模层整合自安全存储、信息加密、抗否认等安全服务,是内网安全模型的核心;顶层是安全应用层,支持全面的安全应用服务。最后给出了内网安全模型的实现框架设计以支持内网安全问题的有效解决。
|
| 关 键 词: | 企业内部网 网络安全 基于角色的访问控制 身份验证 自安全存储 信息加密 |
| 文章编号: | 1004-373X(2007)24-160-03 |
| 收稿时间: | 2007-07-13 |
| 修稿时间: | 2007-07-13 |
Research and Design of Security Support Model in the Intranet |
| |
| LIU Hongyi. Research and Design of Security Support Model in the Intranet[J]. Modern Electronic Technique, 2007, 30(24): 160-162 |
| |
| Authors: | LIU Hongyi |
| |
| Abstract: | TodayPs researchers show more interest in the problem of security in the Intranet. Through analyzing the diversified requirements of Intranet security,this paper presents a novel RBAC- based security support model of Intranet. The proposed model is composed of three visiting levels including,security foundation layer,security modeling layer and security application layer. The resources of Intranet can be classified and assigned in the security foundation layer by uniform resource representatlon,user identity verification and visiting permission assignment. Through integrating the techniques of self- securing storage,information encryption and no negation,the security modeling layer acts as the core of the proposed model. The top layer is the security application layer,which supports the full side of the security of the Intranet. As an illustration,an implementation framework is given to show the effectiveness of the suggested model. |
| |
| Keywords: | Intranet network security RBAC identity verification self-securing storage information encryption |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
