摘要
针对信息化条件下内网安全建设的需求,从运行环境和可信接入两个层面入手,设计了终端安全检查与接入控制系统,该系统对终端计算机的运行环境进行检查和修复,直至其满足可信接入条件后才允许该终端通过802.1x认证接入内部网络,这种方法较好地实现了针对终端主机的可信接入控制。所提出的设计理念和实现方法是对内网安全防护领域很好的补充和完善,应用前景非常广泛。
Considering the situation and requirements of the intranet security, this paper proposes a framework on the basis of environment security and admission credibility. Based on this idea, the security check and admission control system, running on an intranet terminal, is designed to check and repair the terminal environment, and only when the terminal meets the security needs can it be allowed to have access to the intranet through 802.1x authentication. In this way, the intranet security is guaran- teed by the secure environment and creditable user. The proposed design and realization is a good supplement to the intranet security and protection, and will be applied widely.
出处
《计算机工程与应用》
CSCD
2013年第6期109-113,共5页
Computer Engineering and Applications
基金
国防科技大学优秀研究生创新资助(No.S110502)
