摘要
由于下一代网络(NGN)业务平台面向以分组为基础的网络开展业务,同时又是开放的,所以有很多安全问题需要解决。文章从开放业务接口及业务开展两方面对NGN业务平台的安全性进行了探讨,认为:对开放接口的安全性问题,可以通过增加业务接入网关和业务管理平台两个设备解决,其中业务接入网关给开放业务接口增加的安全特性包括身份认证、授权、审计、加密、完整性保护等;对业务开展的安全性问题,可以通过发给用户数字证书、部署防火墙和入侵检测系统、进行负荷量控制、对用户属地进行管理、实时显示用户接入IP地址等手段解决。
Because the NGN service platform is an open platform and it provides services on packet-based networks, there exist many security problems to be solved. This article discusses the security issues of NGN service platform in respects of open service interface and service deployment. It is noted that the security problem of the open interface can be solved by adding service management platform and service access gateway which brings the characteristics of authentication, authorization, accounting, encryption and integrality protection, while the security problem of service deployment can be solved by means of user digital certificate distribution, firewall and inbreak examining system, load control, user home address management, real-time display of access IP address and so on.
出处
《中兴通讯技术》
2006年第1期43-45,共3页
ZTE Technology Journal
关键词
下一代网络
NGN
业务平台
开放业务接口
业务开展
安全性
next generation network
NGN service platform
open service interface
service deployment
security
