摘要
采用了NAP和NAC的核心思想,设计了SSLVPN客户端安全状态检测系统,用于确保SSLVPN客户端的安全性.检测系统通过对客户端的防火墙、反病毒软件和系统补丁的检测来保护其不受病毒、恶意代码的侵害和黑客的攻击.在SSLVPN服务器设计了访问控制系统用于控制不同客户端的接入请求,控制的依据是VPN客户端安全状态检测的结果,对客户端访问控制进一步增强了SSLVPN系统的安全性能.
On the basis of NAP's and NAC's kernel philosophy, a security detecting system on the client sides of SSL VPN was designed to guarantee user's security. The detection system protects the client from the hostile infringement of virus, malevolent code and being attacked by hacker through the detection to firewall, anti-virus software, OS patch in VPN client. An access control system was designed in SSL VPN server to control the access requests of different VPN clients. It is based on the result of client security state. The access control to requests of SSL VPN clients further enhances SSL VPN system security performance.
出处
《华中科技大学学报(自然科学版)》
EI
CAS
CSCD
北大核心
2006年第7期49-52,共4页
Journal of Huazhong University of Science and Technology(Natural Science Edition)
基金
国家自然科学基金资助项目(60373088).
关键词
SSL
VPN系统
客户端
安全状态
访问控制
SSL VPN (Security Socket Layer Virtual Private Network) system
client sides
security state
access control
