摘要
针对5G校园专网在用户接入和授权管理方面存在的安全风险,提出一种基于安全管控装置的5G校园专网安全接入和授权管控方案.结合零信任网关构造5G专网安全系统,实现用户的安全无感接入,以及基于用户身份与应用级别细颗粒度的授权管控.研究结果表明:该方案基于最小化应用权限的授权管理策略,极大程度减低了5G校园专网的安全接入风险,并通过与零信任框架相结合,构造更为安全可靠的零信任5G专网安全系统.
Aiming at the security risks of 5G campus private network in user access and authorization management,a 5G campus private network security access and authorization management scheme based on security management and control device is proposed.Combined with a zero-trust gateway,a 5G private network security system is constructed to achieve secure and seamless access for users,and authorization control based on user identity and application-level fine-grained degree.The research results show that the scheme,based on the authorization management strategy of minimising application privileges,greatly reduces the security access risks of 5G campus private network,and achieves a more secure and reliable zero-trust 5G private network security system by combining with the zerotrust framework.
作者
江魁
肖泽宇
何维兵
叶将发
JIANG Kui;XIAO Zeyu;HE Weibing;YE Jiangfa(Information Center,Shenzhen University,Shenzhen,Guangdong 518060,China;College of Electronics and Information Engineering,Shenzhen University,Shenzhen,Guangdong 518060,China;Guangzhou Cyber EX Information Technology Co.,Ltd.,Guangzhou,Guangdong 510030,China)
出处
《福州大学学报(自然科学版)》
CAS
北大核心
2023年第5期596-603,共8页
Journal of Fuzhou University(Natural Science Edition)
基金
教育部中国高校产学研创新基金资助项目(2021ITA01009)。
关键词
5G校园专网
安全接入
无感接入
授权管控
5G campus private network
secure access
seamless access
authorization management and control
