摘要
为解决内网信息安全管理问题,依据安全等级防护标准和信息安全技术的研究,提出了一种基于公开密钥基础设施(PKI)在内部网构建信息安全访问控制体系的设计模型。该模型通过身份认证、终端防护、SSL安全认证网关的有效结合,建立由终端至涉密资源之间可信、完整、有效的信息安全传输机制。应用实例表明了该方法在实际信息安全访问控制中的可靠性和有效性。
Main problem of the safety protection for involved secret computer information system is presented,Though referencing the standard of the safety protection for involved secret computer information system and studying the technology of information safety pro-tection.A way is put forward to design secure model of information safety access control system based on public key infrastructure(PKI) technology particularly.With integration of CA,terminal protection and SSL security gateway,the secure model will keep the confi-dentiality,the integrity and the usability of encryption data transmission.The application results show that the system can lead to security and reliability,which is of certain valuable reference to information security management of the similar corresponding systems.
出处
《计算机工程与设计》
CSCD
北大核心
2011年第4期1249-1253,共5页
Computer Engineering and Design
关键词
信息安全
公开密钥基础设施
身份认证
安全套接层协议
访问控制
加密传输
public key infrastructure
certificate authority
reregistered authority
security socket layer security access control
encryption data transmission
