摘要
基于TCM标准的可信计算平台,借鉴可信计算组织(TCG)的可信网络连接技术(TNC)规范,提出了一种可信网络接入认证模型,该模型在TNC三层模型上增加了一层系统恢复层,采用先评估再接入认证的方法,即客户端首先对自己进行评估,只有在认为自己可信的情形下才向策略决定点申请接入请求,提高了接入认证效率,同时对于TNC模型中拒绝接入的客户端采取了更柔性的策略,提高了网络的健壮性。
This paper, based on the platform for trusted specifications for trusted network connect technology (TNC), computing of TCM standard, and in the light of TC6 proposes a trusted network access authentication model. The model adds a system restoring layer to the TNC three-tier model. The model adopts first-assess-and- then-access authentication method, in which the client first assesses itself, and only under the condition that it considers its being credible should it apply to the policy decision point for access, thus raising the efficiency of access authentication. Meanwhile, the model uses a flexible strategy in dealing with the client that is refused to access to the network, thus enhancing the robustness of the network.
出处
《通信技术》
2010年第7期114-117,共4页
Communications Technology
基金
北京市人才强教深化计划--中青年骨干教师基金项目(NO.*71A0911170*)