摘要
在基于策略的互连网络中 ,一致性的安全策略系统 (SPS)的存在是非常必要的。本文简述SPS的一般结构与功能需求 ,讨论SPS的关键问题 ,并就SPS在网络访问控制的功能扩展方面提出一些建议 ,例示SPS在IPsec中的应用。
With the recent definition of the security policy system,IPsec has joined the area of policy-based networking.This paper discusses the general architectural and functional requirements for systems in charge of security policy provisioning,and presents a critical evaluation of SPS.Some extensions are also suggested to increase SPS functionality in the network access control field.In the end,the authors discuss the implementation of SPS in IPsec.
出处
《信息工程大学学报》
2002年第3期31-34,共4页
Journal of Information Engineering University
关键词
网络安全
IP安全
安全策略系统
network security
Internet protocol security
security policy system