摘要
该文提出了一种CIMS网络安全体系结构及设置“安全子层”的设计思想。介绍了基于该安全体系结构的5个层次的安全保障:用户安全、应用安全、端-端安全、子网安全和链路安全。限于安全防护的开销,实用的CIMS网络系统根据安全需求,可选择其中某些层次的若干安全服务选项。已经在实验网络上实现了有关的安全机制,提供了相应的安全服务。
A security architecture of CIMS network and a design idea of 'security sublayer' are proposed in this paper. Five layer security protections based on the security architecture are introduced: user security, application security, end-end security, subnetwork security and link security. For overhead of security fences, some security services oPtions of a few layers may be optimized based on security requirements in practical CIMS network system. Some security mechanisms have been implemented and relative security services have been provided in an experimental network.
出处
《南京理工大学学报》
EI
CAS
CSCD
1997年第3期257-260,280,共5页
Journal of Nanjing University of Science and Technology
基金
国家自然科学基金
关键词
计算机网络
安全体系结构
计算机集成制造
computer networks, local area networks, safety techanics
CIMS, network security
