作者投稿和查稿 主编审稿 专家审稿 编委审稿 远程编辑

计算机工程 ›› 2007, Vol. 33 ›› Issue (05): 123-125. doi: 10.3969/j.issn.1000-3428.2007.05.043

• 安全技术 • 上一篇    下一篇

基于形式化与图形化的IPSec安全策略管理

陈 卓   

  1. (湖北工业大学计算机学院,武汉 430068)
  • 收稿日期:1900-01-01 修回日期:1900-01-01 出版日期:2007-03-05 发布日期:2007-03-05

Management of IPSec Security Policy Based on Formal Language and View-tool

CHEN Zhuo   

  1. (School of Computer, Hubei University of Technology, Wuhan 430068)
  • Received:1900-01-01 Revised:1900-01-01 Online:2007-03-05 Published:2007-03-05

摘要: IPSec是一个策略驱动的安全机制,只有当安全策略被正确定义和配置时才能保证IPSec的功能被正确执行,怎样根据特定的条件设置合理有效的策略,是正确实施IPSec的一个重要问题。该文对IPSec安全需求的分析方法进行了改进和形式化表示,给出了一种策略管理的图形化工具。

关键词: IPSec, 安全策略, AH协议, ESP协议

Abstract: IPSec is a typical policy-enabled networking service, its functions will be executed correctly only if security policies are correctly specified and configured. The paper discusses a new idea of IPSec policy management based on security policy system. Then it offers a view-tool of security policy in IPSec.

Key words: IP security, Security policy, AH protocol, ESP protocol