摘要
在分析了传统SSL VPN对应用支持不足和存在安全问题的基础上,提出了基于二层交换技术的改进型SSL VPN系统结构,该结构包括三项关键性技术:虚拟二层交换机的SSL VPN代理服务器,数据封装标准和客户端防火墙。该系统不仅满足了为所有应用提供访问的需求,而且增强了通信隧道和客户端的安全性,最后还给出了改进后系统的延迟性能和并发性能测试。
As traditional SSL VPN suffered from insufficient support for applications and weak security, an improved SSL VPN system architecture based on L2 switching technology was put forward. It accommodated three schemes: virtual switch deployed at SSL VPN proxy Server, data encapsulation standards and client firewall. The improved system not only meets all the applications, but also enhances the security of communication tunnels and client. Finally, the delay performance and concurrent performance testing of improved system were given.
出处
《计算机应用》
CSCD
北大核心
2007年第12期2954-2956,2959,共4页
journal of Computer Applications
关键词
SSL
VPN
虚拟网卡
虚拟交换机
网络驱动程序接口规范
SSL VPN
virtual Network Interface Card (NIC)
virtual switch
Network Driver Interface Specification (NDIS)