A trusted network connection system for security enhancement

一种网络连接、安全性的技术,应用在可信网络连接系统领域,能够解决平台完整性评估不对、背景技术安全性低、无法验证AIK证书有效性等问题,达到简化密钥管理及完整性校验机制、提高安全性、简化密钥管理的效果
CN101242401AActive Publication Date: 2008-08-13CHINA IWNCOMM
0 Cites 10 Cited by

Patent Information

Authority / Receiving Office
CN · China
Patent Type
Applications(China)
Current Assignee / Owner
CHINA IWNCOMM
Publication Date
2008-08-13

Smart Images

  • Figure 1
    Figure 1
  • Figure 2
    Figure 2
Patent Text Reader

Abstract

The invention relates to a safety-enhanced trusted network connecting system, the access requestor is network connected with a policy enforcement point in authentication protocol manner, the access requestor is network connected with an access authorizer by network authorizing transmission protocol interface, integrity evaluation interface and integrity measurement interface, the policy enforcement point is network connected with the access authorizer by policy implementation interface, the access authorizer is network connected with a policy manager by user identification authorization interface, platform evaluation authorization interface and integrity measurement interface, the access requestor is network connected with the policy manager by integrity measurement interface. The invention solves following technology problems: low security, inability of the access requestor to verify the validation of AIK certificate, and non-equivalence of platform integrity evaluation. The invention employs three-element equivalent identification protocol in network access layer and integrity evaluation layer, which improves the whole trusted network connection architecture and extends the application scope of trusted network connection.
Need to check novelty before this filing date? Find Prior Art

Description

technical field

[0001] The invention belongs to the technical field of network security, and in particular relates to a trusted network connection system with enhanced security. Background technique

[0002] With the development of informatization, the problems of malicious software such as viruses and worms are extremely prominent. There have been more than 35,000 kinds of malicious software, and more than 40 million computers are infected every year. To contain such attacks, it is necessary not only to solve the problem of secure transmission and data input checks, but also to start defense from the source, that is, from every terminal connected to the network. However, traditional security defense technologies have been unable to defend against a wide variety of malicious attacks.

[0003] In response to this problem, the International Trusted Computing Group TCG has specially formulated a network connection specification based on trusted computing technology - Trusted ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More