关键词: 安全策略 中间件 安全防护行为 系统框架

Abstract:

The policy-based security technology is a key to the current network security research, though the mechanism to apply security policies in networks isnot very perfect, By analyzing the requirements of policy implemention in the application of network security, this paper introduces a system framework  for network security, which incudes security policy, security precaution action and network application logic and puts forward a formal description of security policy, security precaution action and application of network according to the characteristics of the statcs and actions of the applications in networks. Then this paper proposes a monitoring mechanism of application logic and the algorithms for event-driven policy enforcement, and obtains the  goal of controling network actions according to the policies, enhancing the flexibility and sealability of security.

Key words: security policy, middleware, security precaution action, system framework