摘要
给出了一种基于虚拟网卡的改进型SSL VPN系统结构模型,解决了传统客户端模式SSLVPN中采用NDIS中间层驱动程序报文拦截技术所引入的软件冲突问题。同时,模型通过客户端防火墙的引入也解决了传统客户端模式SSL VPN存在的安全性不足问题,增强了隧道通信的安全性。目前,所研究的SSL VPN系统结构模型已成功地应用于相关商业产品中。
In order to solve the software conflict of traditional client mode SSL VPN system,which is caused by the adopted package interception technology of NDIS intermediate driver,this paper proposes an advanced SSL VPN system architecture based on virtual network adapter. Meanwhile, the security vulnerability of traditional SSL VPN system is also solved in this architecture by importing client firewall, improving the safety of tunnel communication. Currently, the proposed SSL VPN system architecture has been successfully applied in correlative commercial products.
出处
《航空计算技术》
2009年第6期131-134,共4页
Aeronautical Computing Technique
