摘要
为提高安全策略的管理效率,对网络管理系统中安全域、移动代理和Web技术进行了研究。面向大规模网络安全设备管理领域,提出了一种具有良好的适应性和跨平台管理的动态集中策略管理解决方案。该方法较好地解决了策略自动分发、一致性和大规模安全策略的集中管理等问题。最后通过简单防火墙系统的实现验证了该体系结构的有效性和灵活性。对实际的网络安全集中控制平台的开发具有指导意义。
Abstract: In order to increase the management efficiency of security policy, security domain, mobile agent and web' s technology are studied in network management system. Towards the large-scale network security equipment management system, a dynamic and con- centrated policy management settlement method is put forward. The method has good adaptability and muiti-platform management. The problems, such as security policy auto-distribution, consistency and the concentrated management oflarge-scale security policy etc, are solved effectively. Finally the effectiveness and the flexibility of this architectural structure are verified by way of realizing of a simple firewall model system. The guidelines is provided to the development of the real network security centralized control platform.
出处
《计算机工程与设计》
CSCD
北大核心
2009年第7期1586-1589,共4页
Computer Engineering and Design
关键词
策略网管
域
移动代理
安全策略
自动分发
policy-based network management
domain
mobile Agent
security policy
policy auto-distribution
