摘要
访问控制策略是保证网络安全的核心技术之一。本文从防火墙管理中过滤规则的现状出发,分析了策略集中冗余和冲突产生的原因,讨论了基于决策树的方法对冗余和冲突进行检测、优化和消除,对所使用的方法进行了比较分析,为客观、合理、高效的管理访问控制策略,提高网络的安全性和可靠性做了基础性工作。
Access control strategy is one of the core technologies to guarantee the network security. According to the present situation of the fil- ter rules in the firewall management, this paper analyzes the causes of concentration and redundancy of the strategy and its conflict, and then dis- cusses the methods ,based on the decision tree, to test, optimize and eliminate the redundancy and the conflict. At last, it applies the methods of comparative analysis for an objective, reasonable and efficient management of access control strategy, and the improvement of the safety and reliabil- ity of the network.
出处
《黔南民族师范学院学报》
2012年第3期125-128,共4页
Journal of Qiannan Normal University for Nationalities
基金
贵州省教育厅自然科学类科研项目资助(项目批准号:黔教科20090048)
黔南民族师范学院院级教改项目资助(项目批准号:jg-11-02)
关键词
防火墙
决策树
访问控制策略
检测
优化
firewall
decision tree
access control strategy
test
optimize
