摘要
针对恶意主机对计算机网络信息安全的威胁,在下一代网络的代表Parlay/OSA APIs框架中引入恶意主机黑名单鉴定机制来加强计算机网络信息安全的模型。当客户与主机建立连接时,进行黑名单鉴定,如果客户或主机任何一端在黑名单中,则拒绝接入,切断了恶意主机与客户之间的连接,从源上堵住了恶意信息的传播,从而保证了计算机网络信息的安全。在黑名单鉴定机制中,除引入技术手段外,还引入法律和道德因素。
For the menace of computer and network information by the malicious-host, a security model of computer and network information that imported the malicious-host-blacklist-authenticated mechanism into parlay framework is provided, which is the delegate of the next generation network. The blacklist-authentication will carry out before the connection is created by the host and its vip. And if one of the host and its vip is in the blacklist, the connection will be refused. The connection of malicious-host and its vip is cut offand the propagation ofvicious information from the sourceis blocked up. So the safety of computer and network information is insured. Besides technique, law-factor and moral-factor is imported in the malicious-host-blacklist-authenticated mechanism.
出处
《计算机工程与设计》
CSCD
北大核心
2008年第16期4174-4176,4199,共4页
Computer Engineering and Design
