J4 ›› 2006, Vol. 28 ›› Issue (2): 10-13.
• 论文 • 上一篇 下一篇
朱培栋 刘欣 蔡开裕
出版日期:
发布日期:
Online:
Published:
摘要:
本文在全面分析域间路由安全威胁的基础上提出实现域间路由安全的系统化方法,从安全策略检测、路由协议增强、路由器健壮性设计、路由行为监测以及安全能力测试等多个角度来增强域间路由系统的安全能力,并建立域间路由系统的安全能力模型;探讨了各种安全功能的交互关系、多视图之间的互补与合作以及安全能力部署等问题;同时, ,给出了路由器安全配置检测工具、安全测试工具和路由监测系统的基本实现方案。
关键词: 域间路由 安全 策略 协议增强 监测 能力模型
Abstract:
Based on the thorough analysis of secure threats of interdomain routing systems, the paper proposes a systematic approach to improving system security , which integrates policy checker, protocol enhancement, router robustness design, .behavior monitoring and security testing. The security capability model of inter-domain routing is built, and the relations between different security methods and their deployment are discussed. The designs of some effic ient tools are also presented including configuration verifier, security tester and muting monitor.
Key words: inter-domain routing, security, policy, protocol enhancement, monitoring, capability model
朱培栋 刘欣 蔡开裕. 实现域间路由系统安全的系统化方法和有效工具[J]. J4, 2006, 28(2): 10-13.
0 / / 推荐
导出引用管理器 EndNote|Ris|BibTeX
链接本文: http://joces.nudt.edu.cn/CN/
http://joces.nudt.edu.cn/CN/Y2006/V28/I2/10