摘要: 为解决现有Web数据库系统在多宿主、可移动网络环境中的应用安全问题,引入策略执行模块(PEM),提出一种基于可信计算和主机标识协议(HIP)的Web数据库安全模型。使用HIP对平台身份进行验证,利用可信计算模块确保平台安全。分析结果表明,该模型具有较好的安全性,在支持主机移动和多宿主应用的同时,能够抵御病毒、木马等平台内部危害以及拒绝服务攻击、中间人攻击等网络威胁。
关键词:
Web数据库,
安全模型,
可信计算,
主机标识协议,
多宿主,
移动性
Abstract: Aiming at the security problem of Web database system in multi-homing and mobility network environment, by introducing the Policy Execute Module(PEM), a Web database security model based on trusted computing and Host Identity Protocol(HIP) is proposed. HIP validates the platform while trusted computing guarantees platform’s security. This model is well safe, and can support host’s mobility and multi-homing while has defense against inner threat such as virus and Trojan horse and network attack such as denial of service and man-in-the-middle.
Key words:
Web database,
security model,
trusted computing,
Host Identity Protocol(HIP),
multi-homing,
mobility
中图分类号:
谷伟, 朱学永. 基于可信计算和HIP的Web数据库安全模型[J]. 计算机工程, 2013, 39(3): 63-66.
GU Wei, SHU Hua-Yong. Web Database Security Model Based on Trusted Computing and HIP[J]. Computer Engineering, 2013, 39(3): 63-66.