作者投稿和查稿 主编审稿 专家审稿 编委审稿 远程编辑

计算机工程 ›› 2013, Vol. 39 ›› Issue (3): 63-66. doi: 10.3969/j.issn.1000-3428.2013.03.013

• 软件技术与数据库 • 上一篇    下一篇

基于可信计算和HIP的Web数据库安全模型

谷 伟,朱学永   

  1. (电子工程学院网络信息管理中心,合肥 230037)
  • 收稿日期:2012-04-01 出版日期:2013-03-15 发布日期:2013-03-13
  • 作者简介:谷 伟(1985-),男,硕士研究生,主研方向:Web数据库,网络安全:朱学永,教授
  • 基金资助:
    安徽省自然科学基金资助项目(090412055)

Web Database Security Model Based on Trusted Computing and HIP

GU Wei, ZHU Xue-yong   

  1. (Management Center of Network and Information, Electronic Engineering Institute, Hefei 230037, China)
  • Received:2012-04-01 Online:2013-03-15 Published:2013-03-13

摘要: 为解决现有Web数据库系统在多宿主、可移动网络环境中的应用安全问题,引入策略执行模块(PEM),提出一种基于可信计算和主机标识协议(HIP)的Web数据库安全模型。使用HIP对平台身份进行验证,利用可信计算模块确保平台安全。分析结果表明,该模型具有较好的安全性,在支持主机移动和多宿主应用的同时,能够抵御病毒、木马等平台内部危害以及拒绝服务攻击、中间人攻击等网络威胁。

关键词: Web数据库, 安全模型, 可信计算, 主机标识协议, 多宿主, 移动性

Abstract: Aiming at the security problem of Web database system in multi-homing and mobility network environment, by introducing the Policy Execute Module(PEM), a Web database security model based on trusted computing and Host Identity Protocol(HIP) is proposed. HIP validates the platform while trusted computing guarantees platform’s security. This model is well safe, and can support host’s mobility and multi-homing while has defense against inner threat such as virus and Trojan horse and network attack such as denial of service and man-in-the-middle.

Key words: Web database, security model, trusted computing, Host Identity Protocol(HIP), multi-homing, mobility

中图分类号: