| 基于多Agent的可控网络安全系统研究 |
| |
| 引用本文: | 周剑岚,刘先荣,宋四新.基于多Agent的可控网络安全系统研究[J].系统工程与电子技术,2008,30(6). |
| |
| 作者姓名: | 周剑岚 刘先荣 宋四新 |
| |
| 作者单位: | 1. 华中科技大学控制科学与工程系,湖北,武汉,430074;中国长江三峡工程开发总公司博士后工作站,湖北,宜昌,443002
2. 中国长江三峡工程开发总公司博士后工作站,湖北,宜昌,443002 |
| |
| 摘 要: | 移动安全Agent扫描各客户主机的漏洞,采集记录异常活动的审计日志,实现事前和事后的安全保障,但移动Agent自身的通信和迁移的安全性同样重要.首先结合硬件特征属性密钥和用户信息,实现基于Agent技术的多因素认证系统,在认证基础上,利用非对称加密技术和密钥管理,保障Agent通信和迁移的安全性.Agent作为软件,容易受到外部破坏,采用检测代理,通过Agent的协作,利用地址解析协议对网内节点的扫描,将广域网扫描机制转化为简单易行的内网扫描,从而保障客户主机中认证Agent的部署可靠性.实验结果表明,该系统效率高,可扩展性、通用性好.
|
| 关 键 词: | 网络安全 安全服务 多智能体系统 移动安全智能体 Agent 网络 安全系统 研究 based system network security controllable 通用性 可扩展性 系统效率 结果 实验 内网 机制转化 广域网 节点 地址解析协议 检测代理 破坏 |
Research on controllable network security system based on multi-agent |
| |
| ZHOU Jian-lan,LIU Xian-rong,SONG Si-xin.Research on controllable network security system based on multi-agent[J].System Engineering and Electronics,2008,30(6). |
| |
| Authors: | ZHOU Jian-lan LIU Xian-rong SONG Si-xin |
| |
| Institution: | ZHOU Jian-lan1,2,LIU Xian-rong2,SONG Si-xin2 |
| |
| Abstract: | Mobile security agents scan the vulnerabilities,gather the auditing logs,and implement the preactive and postactive security tasks,but it's also necessary to guarantee the communication and mobility security for agent itself.With the hardware characteristics,asymmetric encryption algorithm and user privacy,the multi-factor authentication is implemented based on agent,which guarantees the communication security.Agent is easily hit from the outside,so the scanning agent detects the network inner nodes using ARP protocol,which induces an applicable scanning method,and provides a feasible approach to guarantee the deployment of the multi-agent platform.The results obtained from experiments show that the system is high efficiency,extensible and open. |
| |
| Keywords: | network security security service multi-agent system mobile security agent |
| 本文献已被 CNKI 万方数据 等数据库收录! |
|
