%0 Journal Article
%T A Novel Application-layer Based Access Control Model for SSL VPN<br>一种面向SSL VPN的新型应用层访问控制模型
%A XIA Tao
%A ZHOU Jing-Li
%A YU Sheng-Sheng
%A OUYANG Kai
%A <br>夏涛
%A 周敬利
%A 余胜生
%A 欧阳凯
%J 计算机科学
%D 2006
%I 
%X The use of VPN to securely access the remote servers through Internet is one important technology in the current network security research. However, the tunneling technology of VPN makes it possible to bypass the control of firewall and compromise interior servers based on VPN server. Thus, this paper puts forth the Application-layer based Centralized Information Access Control Model, a new access control model for VPN. It integrates the features of the current mainstream access control models and the working mechanism of anti-virus and intrusion detection. On the basis of VPN communication stream, it also tightly couples access control with VPN tunnel and transmission mechanism to enhance network security. This paper also provides a prototype for the model.
%K Virtual private network
%K Access control
%K Application-layer
%K Tunneling<br>虚拟私有网
%K 访问控制
%K 应用层
%K 隧道
%U http://www.alljournals.cn/get_abstract_url.aspx?pcid=5B3AB970F71A803DEACDC0559115BFCF0A068CD97DD29835&cid=8240383F08CE46C8B05036380D75B607&jid=64A12D73428C8B8DBFB978D04DFEB3C1&aid=173C9ABA8FF28158&yid=37904DC365DD7266&vid=27746BCEEE58E9DC&iid=5D311CA918CA9A03&sid=9971A5E270697F23&eid=933658645952ED9F&journal_id=1002-137X&journal_name=计算机科学&referenced_num=0&reference_num=13