摘要
目前SSL VPN通常采用的公开算法,其安全性正在受到学者的质疑.入侵者若窃听到户名/口令,即可得到合法访问权限,并可通过合法权限非法访问内部系统.在现有的SSL VPN方案基础上,本文对实际应用中的各种可能服务类型进行分析,提出了一类使用iKey+PIN码双因素进行验征的解决方案,利用全新的权限验证方法结合SSL VPN技术解决内部系统访问的安全问题,并给出了这一方法的方案设计.这一方案可解决由访问权限引起的内部系统访问的安全问题.
The safety of existing SSL VPN open algorithm is being questioned by scholars. If the intruders get the Username / password by eavesdroping, access can be legal, and leading to unauthorized access internal systems by lawful authority. Refering to the existing programmes of SSL VPN., in this paper, the practical applications of the various types of service are carried out analysis, and the use of a class of iKey + PIN code for two-factor authentication solutions is proposed, by using a new method of certification authority combining SSL VPN technology to solve internal system access security issues. And this approach has given the programme design. The programme can resolve the access security issues of the internal system.
出处
《湘南学院学报》
2008年第5期75-78,82,共5页
Journal of Xiangnan University
