计算机工程与应用 ›› 2010, Vol. 46 ›› Issue (28): 90-93.DOI: 10.3778/j.issn.1002-8331.2010.28.026

• 网络、通信、安全 • 上一篇    下一篇

典型应用系统安全保护框架研究

龚 雷1,2,3,赵 勇3,韩培胜1,3,李 瑜3   

  1. 1.信息工程大学 电子技术学院,郑州 450004
    2.信息网络安全公安部重点实验室,上海 201204
    3.北京工业大学 计算机学院,北京 100124
  • 收稿日期:2010-05-10 修回日期:2010-08-09 出版日期:2010-10-01 发布日期:2010-10-01
  • 通讯作者: 龚 雷

Research on security protective framework for typical application system

GONG Lei1,2,3,ZHAO Yong3,HAN Pei-sheng1,3,LI Yu3   

  1. 1.Institute of Electronic Technology,Information Engineering University,Zhengzhou 450004,China
    2.Key Lab of Information Network Security,Ministry of Public Security,Shanghai 201204,China
    3.Institute of Computer Science,Beijing University of Technology,Beijing 100124,China
  • Received:2010-05-10 Revised:2010-08-09 Online:2010-10-01 Published:2010-10-01
  • Contact: GONG Lei

摘要: 以现有信息系统安全保护框架为指导,针对目前普遍使用的网站应用系统,从构建安全计算环境、安全区域边界以及安全通信网络的角度出发,研究如何建立典型应用系统的安全保护框架。给出了安全保护框架的体系结构,分析了其中所涉及的关键技术,描述了保护框架的实际应用部署和工作流程。相关安全性分析和测试表明,提出的保护框架具有更强的针对性,更高的可操作性,能够为典型应用系统提供可靠的安全支撑与保障。

关键词: 安全保护框架, 应用安全, 可信计算, 访问控制, 安全策略

Abstract: This paper firstly introduces two classical security protective frameworks for information system,and then focuses on how to set up safe computing environment,safe area boundary and safe communication network for widely used website application system,in order to establish security protective framework for it.This paper analyzes the construction of security protective framework,discusses some of the key technologies and describes the practical deployment and work flow of the framework.Security analysis and tests demonstrate that the framework proposed in the paper is very concrete and easy to put into practice,so that it can provide effective security support for the website application system.

Key words: security protective framework, application security, trusted computing, access control, security policy

中图分类号: