摘要
针对传统网络安全技术的缺陷,提出了网络隔离技术,网络隔离的目的是保护内部网的安全,而网络互联的目的是内外网进行数据交换。对于这两方面之间存在的矛盾性,提出了一种基于物理隔离的数据安全转发的技术方案。构建基于DES算法的消息认证系统,该系统对传输的原始数据进行DES算法加密,通过比较内外部处理单元中传输数据的消息的一致性,来判断数据的完整性。采用带缓冲区的双通道实时开发技术,改善了系统的安全性能。实验结果表明,在内、外网络断开的情况下实现动态、实时的数据安全转发,从而实现内外网之间的真正安全的物理隔离。
According to the defects of the traditional network security technology,network isolation technology is proposed.The aim of network isolation is to ensure the safety of in-house network,while the aim of internetworking is the data exchange of internal and external nets.For the contradictoriness of both ways,a technical proposal of data security forwarding based on physical isolation is put forward.A certification scheme about information is built based on DES algorithm,which encrypts the transmittal raw data using DES.It judges the completeness of data by comparing the information's consistency of the transmission data in internal and external treatment unit.Systematic safety performance is improved by using the dual channel real-time developmental technology with buffer.The results of experiment show that the data security forwarding is realized dynamically and duly when the inner and outer net is disconnect,consequently,the real and safe physical isolation is achieved between inner and outer net.
出处
《电子设计工程》
2011年第12期130-132,共3页
Electronic Design Engineering
关键词
网络安全
网络隔离技术
物理隔离
数据加密
network security
network isolation technology
physical isolation
data encryption
