| 二层设备终端安全接入的设计与实现 |
| |
| 引用本文: | 孔令晶,何恐,佘健,肖志辉.二层设备终端安全接入的设计与实现[J].通信技术,2010,43(9):139-141,144. |
| |
| 作者姓名: | 孔令晶 何恐 佘健 肖志辉 |
| |
| 作者单位: | 1. 西南交通大学,信息科学与技术学院,四川,成都,610031
2. 迈普通信技术股份有限公司,四川,成都,610041 |
| |
| 摘 要: | 可信网络连接规范从终端安全着手,通过一个开放的体系架构解决终端安全接入问题。但它只是一个框架性的概念,要想在二层设备上实现终端安全接入就必须通过802.1X协议来实现,而802.1X协议又是借助负载于二层的标准基于局域网的扩展论证协议(EAPOL)进行认证的。现通过扩展标准EAPOL,并将这种扩展应用于可信网络连接框架中,提出了一种实现二层设备安全接入的方法,同时该方法在某个接入系统中得到了实现。
|
| 关 键 词: | 可信网络连接 终端接入控制 802.1X协议 EAPOL |
Design and Realization of Terminal Security Access Based on Second-Layer Device |
| |
| KONG Ling-jing,HE Kong,SHE Jian,XIAO Zhi-hui.Design and Realization of Terminal Security Access Based on Second-Layer Device[J].Communications Technology,2010,43(9):139-141,144. |
| |
| Authors: | KONG Ling-jing HE Kong SHE Jian XIAO Zhi-hui |
| |
| Affiliation: | ② (①College of Information Science & Technology,Southwest Jiaotong University,Chengdu Sichuan 610031,China;②Maipu Communication Technology Co,Chengdu Sichuan 610041,China) |
| |
| Abstract: | TNC (Trusted Network Connect),starting from the terminal security and through an open frame,solves the problem of terminal security access.However,it is just a frame conception,and only by 802.1X protocol can the terminal security access based on 2nd-layer device be realized.802.1X protocol is a access method commonly-used by switch device,and carries out authentication through EAPOL on 2nd-layer device.The paper proposes a 2nd-layer security access method upon TNC framework,which is realized by expanding standard EAPOL.This method is successfully used in an actual security access system. |
| |
| Keywords: | HAPOL |
| 本文献已被 维普 万方数据 等数据库收录! |
|
