基于IPSEC安全协议的INTERNET通信安全

INTERNET Communication Security Based on IPSEC Protocol

目前的INTERNET通信协议TCP/IP存在诸多安全缺陷,无法满足越来越高的INTERNET通信安全要求,本文针对IPV4协议的通信安全问题,论述在网络层实施IPSEC安全协议以解决目前INTERNET通信的部分安全问题,主要包括:对网络单元的访问控制、数据源认证、数据完整性和保密、重播数据包的监测和拒绝(抗重播),并对IPSEC的实施方案进行探讨和设计。

Internet communication protocol TCP/IP can't guarantee communication information security because it has many security flaws. Aiming at IPV4 protocol's communication security menace, we can implement IPSEC security protocol at IP layer to settle some security questions and provide several kinds of security service such as : anti-replay, Integrity, Confidentiality and Authentication .Moreover, we discuss and design the IPSEC implementing schemes according to the different security requests.