| 可信网络连接的安全量化分析与协议改进 |
| |
| 引用本文: | 罗安安,林闯,王元卓,邓法超,陈震. 可信网络连接的安全量化分析与协议改进[J]. 计算机学报, 2009, 32(5). DOI: 10.3724/SP.J.1016.2009.00887 |
| |
| 作者姓名: | 罗安安 林闯 王元卓 邓法超 陈震 |
| |
| 作者单位: | 清华大学计算机科学与技术系,北京,100084;清华大学计算机科学与技术系,北京,100084;清华大学计算机科学与技术系,北京,100084;清华大学计算机科学与技术系,北京,100084;清华大学计算机科学与技术系,北京,100084 |
| |
| 摘 要: | 可信网络连接(TNC)被认为是可信的网络体系结构的重要部分,随着TNC研究和应用的不断深入,TNC架构自身的安全性问题变得更加至关重要.文中重点研究TNC协议架构的安全性问题,首先提出了一种针对TNC协议的基于半马尔可夫过程的安全性量化分析方法;其次针对TNC完整性验证和访问授权过程中存在的安全威胁和漏洞,提出了一套安全性增强机制,并通过安全量化分析方法进行了验证.最后利用Intel IXP2400网络处理器搭建了TNC原型系统,为文中提出的改进机制和系统框架提供了安全量化验证的实际平台.
|
| 关 键 词: | 可信网络连接 随机模型 认证性 机密性 完整性 |
Security Quantifying Method and Enhanced Mechanisms of TNC |
| |
| LUO An-An,LIN Chuang,WANG Yuan-Zhuo,DENG Fa-Chao,CHEN Zhen. Security Quantifying Method and Enhanced Mechanisms of TNC[J]. Chinese Journal of Computers, 2009, 32(5). DOI: 10.3724/SP.J.1016.2009.00887 |
| |
| Authors: | LUO An-An LIN Chuang WANG Yuan-Zhuo DENG Fa-Chao CHEN Zhen |
| |
| Affiliation: | Department of Computer Science and Technology;Tsinghua University;Beijing 100084 |
| |
| Abstract: | Trusted Network Connect(TNC)is considered as an important part of trusted network architecture,and with its deeper research and application development,whether it is enough trustworthy during TNC platform authentication and access control becomes a key problem.In the paper,we mainly focus on the trustworthy problem of TNC.First,we proposed a novel security quantifying method which is based on semi-Markov processes.And then,according to the potential threat and security holes during typical message flow and ... |
| |
| Keywords: | trusted network connect stochastic model authenticity integrity confidentiality |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
