摘要
当人们评判一个系统是否安全时,不应该只看它应用了多么先进的设施,更应该了解它最大的弱点是什么,因为网络的安全性取决于它最薄弱环节的安全性。隐藏在世界各地的攻击者通常可以越过算法本身,不需要去尝试每一个可能的密钥,甚至不需要去寻找算法本身的漏洞,他们能够利用所有可能就范的错误,包括设计错误、安装配置错误及教育培训失误等,向网络发起攻击。
When people adjudicate a system whether safety, shouldn't should see only it applied the how advanced facilities, should also understand it biggest weakness is safety that safety that what, because the network is decided by it the most weak link. Concealing the aggressor in world-wide locations can usually cross the calculate way oneself, doing not need to try each a mistake for possible Key of encrypting, even doing not need to looking for loophole of oneself calculate way, they can making use of mistakes , including to design the mistake and install to install the mistake and educate training error etc., starting to network the attack.
作者
钱鑫
QIAN Xin (Nanjing University of Aeronautics and Astronautics, Nanjing 210007, China)
出处
《电脑知识与技术》
2009年第7期5119-5120,5132,共3页
Computer Knowledge and Technology
