基于零信任架构的校园网安全访问研究  被引量:3

Research on Campus Network Security Access Based on Zero Trust Architecture

在线阅读下载全文

作  者:李静元 LI Jingyuan(Office of Information Construction and Management,Shaanxi Normal University,Xi’an 710119,China)

机构地区:[1]陕西师范大学,信息化建设与管理处,陕西西安710119

出  处:《微型电脑应用》2023年第9期60-62,共3页Microcomputer Applications

基  金:西安市“人工智能”产业创新链推进工程项目(20RGZN0025)。

摘  要:随着云计算、物联网、数字化校园等技术的快速发展,校园网的内网和外网边界划分更加模糊化,传统校园网的访问模型存在边界安全风险大、网络管控粗粒度和认证授权不灵活等问题无法满足新需求。提出一种零信任架构下校园网全新的安全访问控制方法,基于信任评估算法对用户身份动态授权策略,默认以最小化授权为基准,实现访问授权的细粒度管控,同时避免内网恶意用户横向攻击其他终端。通过在校园网搭建平台测试,相比传统的网络访问模型所提出的方法在安全性方面有极大的提高。With the rapid development of technologies such as cloud computing,Internet of Things and digital campus,the boundary division between the internal network and external network of the campus network is more blurred.The access model of the traditional campus network has problems such as high risk of boundary security,coarse-grained network management and control and inflexible authentication and authorization,which can not meet the new needs.A new secure access control method for campus network under zero trust architecture is proposed based on the dynamic authorization strategy of user identity and the trust evaluation algorithm.The default is to minimize authorization,so as to realize fine-grained control of access authorization,and avoid malicious users from attacking other terminals laterally.Compared with the traditional network access model,it has greatly improved the security by building a platform on the campus network.

关 键 词:零信任架构 网络安全 校园网 安全防护 无边界网络 

分 类 号:TP393[自动化与计算机技术—计算机应用技术]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象