【摘要】 可编程性使主动网络面临更严重的安全威胁,虽然已经提出了大量的安全策略和安全机制,但它们的实现多以静态为主,无法满足主动网络的动态需求。提出一种基于分散式角色激活管理的访问控制策略,包括身份认证、授权和权限验证,对动态约束提供了灵活有效的支持,比传统的基于角色的访问控制更适应主动网络的动态特性。最后在此基础上设计了主动节点的安全机制。更多还原

【Abstract】 Programmability makes active networks more vulnerable to security threads.Although many security policies and mechanisms are provided, most of them are implemented in static ways and can not meet the dynamic requirement of active networks.Proposes a decentralized role activation in RABC for active networks,which includes authentication,authorization and permission verification.The mechanism provides a flexible way to support dynamic constraints and is more suitable for the dynamic characteristic of active networks than the traditional RABC.Based on this work,a security mechanism of active node is brought forward in the end.更多还原