期刊文献+

主动网络中实现逐站安全的原型框架

Implementing Hop-by-Hop Security Prototype Frameworks in Active Networks
下载PDF
导出
摘要 针对Abone实验平台上实现大规模主动网络的安全问题,集成多种非主动安全组件和传统安全功能,提出了多级分布式密钥法和创建安全关联的策略,扩展KLIPS和警报指示,建立了逐站的包认证和完整性验证的原型框架。通过实验,对LKH方法和EK方法进行分析比较,证实了LKH适合多播组成员的撤回。 This paper focuses on implementing security of large scale Active Networks on the Abone platform. We set up hop-by-hop security prototype framework with packet authentication and integrity by integrating many non-active components and traditional secure functions. We put forward hierarchy-distributed key and security association policy, and extend KLIPS and alarm indications. Finally, we compare LKH with EK using experiments, and conclude that LKH is suitable for the multicast members' revocation.
出处 《电子科技大学学报》 EI CAS CSCD 北大核心 2003年第2期174-178,共5页 Journal of University of Electronic Science and Technology of China
关键词 主动网络 安全 撤回 逐站 包认征 集中式密钥服务器 active networks hop-by-hop security revocation
  • 相关文献

参考文献6

  • 1[1]Kent S, Atkinson R. Security Architecture for the Intemet Protocol[S]. IETF Network Working Group, RFC 2401
  • 2[2]Harkins D, Carrel D. The Internet Key Exchange (IKE)[S]. IETF Network Working Group, RFC 2409
  • 3[3]Canetti R, Cheng P C, Giraud F, et al. An IPsec--based host architecture for secure intemet multicast[C]. Proceedings of NDSS '2000, 2000, 54-70
  • 4[4]Murphy S, Lewis E, Watson R. Strong security for active network[C]. IEEE Openarch, 2001, 21-28
  • 5[5]Peterson L, Gottlieb Y, Hibler M, et al. An OS interface for active routers[J]. IEEE JSAC, 2001, 19(3): 77-85
  • 6[6]Wallner D, Harderet E, Agee R. Key Management for Multicast: Issues and Architectures[S]. IETF Network Working Group, RFC 2627

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部