摘要
防火墙是用来保护一个网络免受外界侵犯的一种有效手段,其设计实现机制是多种多样的.目前的防火墙大都用于TCP/IP协议,但数据通讯产品的政府规范文件(GOSIP-政府OSI文件)通常要求采用官方国际标准,例如国际标准化组织(ISO)制定的标准.ISO定义了开放系统互连(OSI)框架和相应的开发协议规范.可以肯定防火墙同样是OSI环境的一种重要安全措施,但由于TCP/IP与OSI存在的差别,防火墙OSI环境中的应用将产生新的问题,必须对这些问题加以解决。
Firewall is a useful method to keep a network from being intruded by outsiders. It has various designs and implementations. At present, firewalls are fairly well established when connecting to Internet (the TCP/IP protocol suite). But the government procedure profile of data communication products (GOSIPs Government OSI Profile) usually demand use of official international standards, as defined by International Standards Organization (ISO). ISO has defined a framework for Open Systems Interconnection (OSI), and develop protocol specifications (ISO protocols) to fit the framework. It can be assumed that firewalls are also going to be an important security measure when using ISO protocols. With the difference between TCP/IP and OSI, however, to exploit firewall in an OSI environment will be more difficult .To effectively make use of OSI firewall , fundamental problems must be researched, and resolutions must be provided to these problems.
出处
《小型微型计算机系统》
CSCD
北大核心
1999年第4期314-317,共4页
Journal of Chinese Computer Systems
