| 基于Agent的认证与网络访问控制系统 |
| |
| 引用本文: | 周剑岚,宋四新,刘先荣.基于Agent的认证与网络访问控制系统[J].微电子学与计算机,2008,25(7). |
| |
| 作者姓名: | 周剑岚 宋四新 刘先荣 |
| |
| 作者单位: | 1. 华中科技大学控制科学与工程系,湖北武汉,430074;中国长江三峡工程开发总公司,湖北宜昌,443002
2. 中国长江三峡工程开发总公司,湖北宜昌,443002 |
| |
| 基金项目: | 国家自然科学基金
,
部委预先研究项目 |
| |
| 摘 要: | 身份认证与网络访问控制验证用户的合法身份,授权网络资源的访问.针对目前相关系统的缺陷,设计并实现了基于Agent技术的多因素认证与粗、细粒度网络访问控制系统.通过分析和设计Agent软件的通信安全性、认证和访问控制的关键环节和流程,结合硬件特征属性密钥和用户信息,实现多因素认证,并根据网络服务资源的敏感和保密程度,划分不同密级的用户.以Windows XP为例,具体论述Agent软件利用HOOK技术实现以上关键功能.实验结果表明,该系统效率高,可扩展性、通用性好.
|
| 关 键 词: | 身份认证 网络访问控制 智能体 认证与授权机制 |
Agent-Based Authentication and Network Access Control System |
| |
| ZHOU Jian-lan,SONG Si-xin,LIU Xian-rong.Agent-Based Authentication and Network Access Control System[J].Microelectronics & Computer,2008,25(7). |
| |
| Authors: | ZHOU Jian-lan SONG Si-xin LIU Xian-rong |
| |
| Abstract: | Authentication and network access control system verifies user's legal identity and authorizes network resources access.To aim at the shortcomings of the related systems,this paper designs and implements an agent-based multi-factor authentication and coarse,fine-grained network access control system.This paper implements the multi-factor authentication by analyzing and designing the secure communication process,the authentication and access control working flow,as well as the linkage of hardware characteristics and user properties.This paper distinguishes different user levels according to the network service resources secrecy,and demonstrates the realization of above functions with HOOK technology.The results obtained from experiments show that the system is high efficiency,scalable and open. |
| |
| Keywords: | authentication network access control agent authentication and authorization mechanism |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
