| IPSec研究及实现 |
| |
| 引用本文: | 严新,常黎. IPSec研究及实现[J]. 计算机工程与设计, 2005, 26(9): 2458-2460,2493 |
| |
| 作者姓名: | 严新 常黎 |
| |
| 作者单位: | 华中科技大学,水电与数字化工程学院,湖北,武汉,430074;华中科技大学,水电与数字化工程学院,湖北,武汉,430074 |
| |
| 摘 要: | 虚拟专用网(VPN)技术是在开放的网络上实现专用信息传输的一种网络安全技术,IPSec(IP安全体系结构)是实现VPN技术的有效手段.它是针对IPv4存在的安全问题,提出的一种标准的、健壮的以及包容广泛的安全机制,可以为IP及上层协议(如UDP和TCP)提供安全保证.详细地介绍了在网络层提供安全服务的IPSec安全体系结构及其安全协议的工作原理,并对其中的AH协议、ESP协议、安全关联、安全策略及其处理过程进行了深入的研究.最后,着重介绍了IPSec主要模块在Linux下的实现.
|
| 关 键 词: | 虚拟专用网 IP安全体系结构 安全关联数据库 安全策略数据库 AH协议 ESP协议 |
| 文章编号: | 1000-7024(2005)09-2458-03 |
| 收稿时间: | 2004-08-07 |
| 修稿时间: | 2004-08-07 |
Research and implementation of IPSec |
| |
| YAN Xin,CHANG Li. Research and implementation of IPSec[J]. Computer Engineering and Design, 2005, 26(9): 2458-2460,2493 |
| |
| Authors: | YAN Xin CHANG Li |
| |
| Affiliation: | College of Hydropower and Information Engineering, Huazhong University of Sci and Tec, Wuhan 430074, China |
| |
| Abstract: | Virtual Private Network(VPN) is a security technology with which private information can be transferred under open network safely.IPSec(IP Security) is an efficient measure to realize VPN.It provided a kind of standard and robust security mechanism,and it could be used to provide security protection for IP and higher layer protocols.The architecture of IPSec protocol was analyzed at first,then AH protocol,ESP protocol,security alliance and security policy were discussed in detail.At last,the implementation of the main modules of IPSec was introduced. |
| |
| Keywords: | VPN IPSec SAD SPD AH ESP |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
