| 基于GSS-API的SOCKS V5认证机制研究 |
| |
| 引用本文: | 陈兵,顾其威,柳勤. 基于GSS-API的SOCKS V5认证机制研究[J]. 南京理工大学学报(自然科学版), 2003, 27(6): 686-690 |
| |
| 作者姓名: | 陈兵 顾其威 柳勤 |
| |
| 作者单位: | 南京航空航天大学计算机科学和工程系,南京,210016 |
| |
| 摘 要: | SOCKSV5协议可以在防火墙或者VPN服务器中使用。它提供了基于用户/保密字的认证方法,但认证过程中传送的用户名和保密字采用明文格式,因此这种协商不是安全的,容易被攻击者监听和利用。GSS—API是通用安全服务应用程序接口,为调用者提供一个通用模式下的安全服务。调用GSS—API能够保护通信的可靠性、完整性和机密性等安全服务。该文介绍GSS—API的基本元素,分析了GSS—API的操作过程,并阐述了基于GSS—API的SOCKSV5的认证机制,最后给出实现流程。
|
| 关 键 词: | GSS—API 证书 令牌 公钥 SOCKS |
| 修稿时间: | 2002-03-19 |
Study on SOCKS V5′s Authentication Based on GSS- API |
| |
| Chen Bing Gu Qiwei Liu Qin. Study on SOCKS V5′s Authentication Based on GSS- API[J]. Journal of Nanjing University of Science and Technology(Nature Science), 2003, 27(6): 686-690 |
| |
| Authors: | Chen Bing Gu Qiwei Liu Qin |
| |
| Abstract: | With the growing popularity of the Internet, network security is a real concern for most companies today. The Generic Security Service-Application Program Interface (GSS-API) provides security services to callers in a generic fashion, supportable with a range of underlying mechanisms and technologies and hence allowing source-level portability of applications to different environments. A typical GSS-API caller is called itself a communication protocol, calling on GSS- API in order to protect its communications with authentication, integrity, and confidentiality security services. This paper introduces the constructs of GSS-API, including credential, token,security context,mechanism type, naming and channel binding,and analyzes the operational flow. Finally a mechanism model of SOCKS V5's authentication is given based on GSS-API. |
| |
| Keywords: | GSS - API certificate token public key SOCKS |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
