摘要
由于机载网络通信和数据共享的要求,物理隔离不是理想的安保手段,因此,接入公共网络将会引入了诸如旁路、篡改、病毒、颠覆等网络威胁。本文首先分析了为防护网络威胁所建立的分区安保,包括其中的四种安保策略、安保架构与微型内核功能。其次就分区内核的底层安保、中间件安保和应用层安保的特点进行了分析。最后分析了分区通信系统的安保策略与应具备的功能,并讨论了与实时公共对象请求代理体系结构合的实时分区安保的特点。
Because of the requirements of airborne network communications and data sharing, Physical isolation is not ideal security tool, Access to the public network will introduce the network threats, such as bypass, tampering, viruses, subversion. At first, this paper analyzed the threats to protect the network established by the district security. Secondly, analyzed the underlying security, the inten-nediate layer security and application layer characteristics of the partition core security. Finally, analyzed the security strategy and function of partition communication systems, and discuss the features of real-time partition security combined with common object request broker architecture.
出处
《计算机与网络》
2015年第14期66-69,共4页
Computer & Network
关键词
威胁
机载
网络安保
分区
内核
threats, onboard, network security,partition, kernel
