web环境下的TNC

Extending TNC to web-based environments

在可信网络连接(TNC)里,一个网络访问决策是以访问请求方的安全状态为基础的。这个机制受限于封闭的环境,比如局域网和虚拟专用网。本文提出了基于认证标准的解决方法,使得TNC适用于开放的WEB场景。特别提出了把安全和隐私需求考虑在内的TNC架构模型。

In Trusted Network Connect （TNC）, a network access decision is based on the security state of an access requesting party. This mechanism is limited to closed environments such as LANs and VPNs. In this paper, we propose solutions based on authentication standards for enabling TNC in open, web-based scenarios. In particular, an architectural model for TNC is proposed that takes additional security and privacy requirements into account.