基于对等网络的自适应安全协作框架研究

陈海涛; 裴晋泽; 胡华平; 龚正虎

基于对等网络的自适应安全协作框架研究

国防科技大学计算机学院长沙 410073

基金项目: 国家863资助项目(2003AA142010); 国家973计划资助项目( 2003CB314802)

详细信息

作者简介:
陈海涛 (1977-),男,湖北随州人,博士生, nchrist@163.com.

中图分类号: TP 39308
计量
- 文章访问数: 4106
- HTML全文浏览量: 207
- PDF下载量: 751
- 被引次数: 0
出版历程
- 收稿日期: 2004-06-25
- 网络出版日期: 2004-11-30

Research on self-adapted security cooperation framework based on peer-to-peer network

School of Computer Science, National University of Defense Technology, Changsh a 410073, China

摘要

摘要: 提出一种新型的基于对等网络架构的无集中的安全协作框架.灵活有效地支持多种安全服务,如安全管理、安全数据的存储和共享、安全信息发布等;给出了一种适应大规模动态网络环境的支持管理结构自动构造和安全组件自配置的层次和对等方式混合的安全管理方法;基于P2P(Peer-to-Peer)网络的动态特性实现了安全协作框架对于节点变化和安全协作需求的自适应;无集中的结构消除了集中管理的性能和带宽瓶颈,在网络攻击状态下有较强生存能力.
- 对等 /
- 安全协作 /
- 框架 /
- 安全管理 /
- 自适应
Abstract: A new decentralized security cooperation framework based on P2P(peer-to -peer) network was proposed which supported many kinds of security service such as se cu rity management, the storage and sharing of security related data and distributi on of security information.A security management method which supports the robot icized construction of management structure and self-configuration of security c omponents under large-scale and dynamic network environment by the mixture of h i berarchy and peer-to-peer structure was presented. The dynamic change of secur it y components and requirements of security cooperation is self-adapted with the h elp of dynamic property of peer-to-peer architecture. Its decentralized archit ec ture eliminates the performance and bandwidth bottleneck of centralized manageme nt and has good survivability under node failure and network attack.
- P2P(peer-to-peer) /
- security cooperation /
- framework /
- security management /
- self -adapted

HTML全文

参考文献(1)

[1] Peter G, Neumann,Phillip A, et al. Experience with EMERALD to Date . In:First USENIX Workshop on Intrusion Detection and Network Monitoring . California:Santa Clara, 1999. 73~80 [2]Eugene H, Spafford, Deigo Zamboni. AAFID:Intrusion detection using autonomous agents[J]. Computer Networks, 2000,34:547~570 [3] 徐传福. 基于P2P的广域网内容发布系统关键技术研究 . 长沙:国防科技大学计算机学院,2003 Xu Chuanfu. Research on key technology of wan content distribution system based on peer-to-peer technology . Changsha:School of Computer Science, National University of Defence Technology, 2003(in Chinese) [4] Stoica I, Morris R, Karger D, et al. Chord:A scalabl peer-to-peer lookup service for Internet applications . MIT-TR-819, 2001 [5]Zhao B Y, Kubiatowicz J D, Joseph A D. Tapestry:An infrastructure for fault-resilient wide-area location and routing . UCBCSD-01-1141, 2001 [6]Sameh El-Ansary, Luc Onana Alima, Per Brand, et al. Efficient broadcast in structured P2P networks . In:Michal Feldman, Shelley Zhuang, eds. Peer-to-Peer Systems II:Second International Workshop . Heidelberg:Springer-Verlag, 2003. 304~314

施引文献

资源附件(0)

访问统计