作者投稿和查稿 主编审稿 专家审稿 编委审稿 远程编辑

计算机工程 ›› 2007, Vol. 33 ›› Issue (02): 283-284. doi: 10.3969/j.issn.1000-3428.2007.02.100

• 开发研究与设计技术 • 上一篇    

一种基于策略驱动的联动平台设计与应用

朱乾林,云晓春,王永恒,翟建宏   

  1. (哈尔滨工业大学国家计算机信息内容安全重点实验室,哈尔滨 150001)
  • 收稿日期:1900-01-01 修回日期:1900-01-01 出版日期:2007-01-20 发布日期:2007-01-20

Design and Application of Coordination Platform Based on Policy-driven

ZHU Qianlin, YUN Xiaochun, WANG Yongheng, ZHAI Jianhong   

  1. (National Key Lab on Computer Context Information Security, Harbin Institute of Technology, Harbin 150001)
  • Received:1900-01-01 Revised:1900-01-01 Online:2007-01-20 Published:2007-01-20

摘要: 提出了一种基于事件触发策略驱动的联动平台设计,描述了事件触发的策略驱动模型和平台总体结构以及平台联动过程。按照规则对安全事件队列进行处理,提高了策略的效率。使用XML语言描述策略,具有简单、高效的优点。采用组件化的思想,可将各种安全功能以组件的方式挂接在联动平台下,实现了集中控制、分散响应的管理模式,具有很好的灵活性和可扩展性。实践证明,此联动平台提高了网络安全管理的效率,对大规模网络安全管理具有很大的实用价值。

关键词: 策略驱动, 联动平台, 安全组件, XML

Abstract: A design of coordination platform based on event-triggered and policy-driven is presented. The policy-driven model of event-triggered, the architecture of platform and the process of coordination are described. Rules are applied to treat security events queue, which improves the efficiency of policy. Policy is described with XML which is simple with high efficiency. Adopting the thought of component with well flexibility and extensibility, a management mode of centralized control and decentralized response is achieved through implementing all the security functions as the components of the platform. Demonstrated in practice, the coordination platform improves the efficiency of network security management and is greatly useful to the security management of large-scale network.

Key words: Policy-driven, Coordination platform, Security component, XML