摘要
一种有效嵌入式因特网安全架构的设计需要综合考虑到嵌入式因特网服务面对的所有安全威胁。本文分析了嵌入式因特网服务可能遭受的威胁,如拒绝服务、身份冒充、信息截取等,根据嵌入式因特网服务的特点,针对恶意的网络拒绝服务攻击,提出了基于状态相关的识别机制,以实现在不安全的网络环境下进行尽可能安全的服务。
An efficient design of the security architecture of the embedded Internet requires the consideration of all security threats in embedded Internet services. This paper analyses the possible threats against the embedded Internet services, such as service rejection, identity imitation, information interception and so on. Considering the specialty of the embedded Internet, we propose an identification mechanism based on state correlativity which can resolve the problem of vicious net rejection service attack. We also propose the countermeasures against the threats of identity imitation and information interception. Above-mentioned countermeasures can realize the most possible security services in an insecure network environment.
出处
《计算机工程与科学》
CSCD
2003年第2期48-51,共4页
Computer Engineering & Science
