摘要
跨域交换技术为不同安全域之间的数据通信提供了便利,但由于跨域信息系统开放了域内多个端口,面临着各种来自系统内外部的安全威胁,导致了信任危机。针对现有跨域信息系统在数据交换方面的安全需求,首先分析了当前跨域信息交换存在的问题,接着设计了面向多级安全的跨域交换系统架构,该架构能够有效地实现多域信息系统的安全互联与资源共享,然后研究了安全标签绑定、内容过滤等关键技术,最后对下一步的研究工作进行了展望。
Cross domain exchange technology provides a convenience for data communication between different security domains. However, due to a number of opened ports of cross domain information systems, it faces various security threats from internal and external system, leading to a crisis of confidence. Aiming at the existing cross domain information system security requirements in terms of data exchange, this paper firstly analyzes the current problems of cross domain exchange of information, and then proposes multilevel security architecture of the cross domain exchange system, which can effectively implement secure interconnection and resource sharing in the multi domain information system. Moreover, security label binding and content filtering technologies are studied. Finally, the next research jobs are discussed.
出处
《通信技术》
2014年第6期658-662,共5页
Communications Technology
关键词
多级安全
跨域
隔离交换
安全标签
内容过滤
:multilevel security
cross domain
isolation and exchange
security label
content filtering
