摘要
随着电力系统信息化的发展 ,基于Browser/Server结构的网络应用越来越流行。B/S结构的网络应用利用HTTP协议传输数据。但是由于HTTP协议本身是公开的 ,信息在网上明文传输 ,很容易受到网络攻击 ,暴露出安全隐患。文中首先介绍了窃听、篡改、伪造、中断等几种常见的网络攻击手段并展示了信息被截取的过程 ,然后介绍了SSL协议的协商层和记录层结构以及它的安全性 ,最后在此基础上提出采用软件配置。
With the development of information technologies in power systems, it is becoming increasingly popular to use the Browser/Server architecture to implement network applications for data transmission with HTTP protocol. However, since HTTP protocol is open and information is transmitted in plain text, it is vulnerable to network attack. This paper describes common network attacks such as interception,modification, fabrication and interruption and demonstrates the process of information interception. Then the SSL's security features and structures of the handshake layer and record layer are dealt with. Finally three kinds of schemes including software configuration, proxy mechanism, and SSL developing kits are presented to strengthen the security of network application using SSL protocol in existing network application for power systems.
出处
《电力系统自动化》
EI
CSCD
北大核心
2002年第15期70-73,77,共5页
Automation of Electric Power Systems
