摘要
随着5G在行业应用中的不断渗透,5G网络切片安全性不足、SLA保障不具备场景化灵活调节能力等问题逐渐凸显。通过虚拟化机制,建立了灵活的安全与路由策略控制方法,以应用系统内外部(应用系统内部以消息对网络性能的需求为基础,进行路由;应用系统外部以消息对网络性能的需求为基础,选择适当的网络切片)整体调度优化网络资源配置为基础,并基于整体安全策略控制,实现系统链路保障、身份认证、访问控制等,即从网络链路的物理和逻辑多层面保障应用系统的整体可靠性、可用性和安全性。
With the continuous penetration of 5G in industrial applications,problems such as insufficient 5G network slicing security and SLA guarantees that do not have the ability to adjust flexibly in scenarios have gradually become prominent.It establishes a flexible security and routing policy control method through virtualization mechanism.Based on the overall scheduling and optimization of network resource allocation inside and outside the application system(inside the application system,routing is performed based on the network performance requirements of messages;outside the application system,based on the network performance requirements of messages,appropriate network slices are selected),and based on the overall security policy control,the system link guarantee,identity authentication,access control,etc.are realized,that is to ensure the overall reliability,availability,and security of the application system from the physical and logical aspects of the network link.
作者
谢国涛
王首媛
管立军
Xie Guotao;Wang Shouyuan;Guan Lijun(China Information Technology Designing&Consulting Institute Co.,Ltd.,Beijing 100048,China)
出处
《邮电设计技术》
2022年第9期39-43,共5页
Designing Techniques of Posts and Telecommunications
