一种面向融合泛在网的协同防护体系设计

发布时间：2018-06-28 23:24

本文选题：融合泛在网 + 安全接入网关　；参考：《计算机科学》2017年05期

【摘要】：在深入分析融合泛在网功能和特征的基础上,通过增加安全接入网关和虚拟重构安全控制服务器(简称安全控制服务器)两类主要的功能实体构成协同防护的硬件体系,同时通过策略订阅实现协同防护的软件逻辑体系,并采用基于证据投影分解方法的证据理论实现安全态势评估,从而实现在融合泛在网中各种末梢网络均可通过安全接入网关,利用现有的各种异构接入网络安全接入到位于IP核心网的安全服务平台,也可将安全服务命令和数据发送到末梢节点。
[Abstract]:Based on the in-depth analysis of the functions and features of the ubiquitous network, two main functional entities, security access gateway and virtual reconfigurable security control server, are added to form a cooperative protection hardware system. At the same time, the software logic system of cooperative protection is realized through policy subscription, and the evidence theory based on evidence projection decomposition is used to realize the security situation assessment, so that all kinds of endings can be accessed through the security gateway in the converged ubiquitous network. The existing heterogeneous access network is used to secure access to the security service platform located in the IP core network, and the security service commands and data can also be sent to the terminal node.
【作者单位】：南京理工大学计算机科学与工程学院;
【基金】：国家自然科学基金项目(61272419)资助
【分类号】：TP393.08

【相似文献】