摘要
基于IPSec的虚拟专用网 (VPN)尽管极大地改进了传统IP协议缺乏安全机制的问题 ,但在复杂情况下仍会因身份认证不完善而影响网络的安全性。PKI是一套可公开信任的提供认证服务的安全平台 ,可提供身份认证和角色控制服务。该文分析了IPSec和PKI在安全上的技术特点 ,提出了一种将PKI认证技术应用到IPSec-VPN中加强身份认证和角色访问控制 。
Though IPSec based VPN has significantly enhanced the security on conventional network which is caused by the lack of security mechanism of the IP protocol, in some extremities security will still be harmed by its weak identity authentication. As a publicly trusted platform, PKI is designed to provide identity authentication and role access control service. Based on analysis of IPSec and PKI, this paper gives a scheme of applying PKI into IPSec-VPN to strengthen identity authentication and role access control thus makes VPN more secure.
出处
《计算机仿真》
CSCD
2003年第3期45-48,共4页
Computer Simulation
