首页 | 本学科首页   官方微博 | 高级检索  
     

基于IP层的保密通信技术研究及实现
引用本文:袁博,郑见灵,王红胜,陈开颜. 基于IP层的保密通信技术研究及实现[J]. 军械工程学院学报, 2005, 17(4): 64-67
作者姓名:袁博  郑见灵  王红胜  陈开颜
作者单位:军械工程学院计算机工程系 河北石家庄050003(袁博,郑见灵,王红胜),军械工程学院计算机工程系 河北石家庄050003(陈开颜)
摘    要:针对W indows2000下自带的IPSec与L inux的IPSec相互通讯比较困难的问题,对L inux IPSec、ND IS网络驱动程序以及WDM设备驱动程序进行了研究,在W indows平台下设计并实现了一个基于中间层驱动程序的IP-Sec,它能与L inux IPSec通讯。中间层驱动程序对过往的数据包进行加密或者解密操作是通过WDM设备驱动程序与上层应用程序的通讯机制,以此来实现应用层与内核的双向通讯,即应用层向内核传递密钥及其他配置信息,内核向上层应用程序提供底层的配置信息。此外,在L inux IPSec源代码的基础上增加了安全审计功能,具体测试结果表明,这个系统可以与L inux IPSec通信。

关 键 词:IPSec  安全策略  驱动程序  密钥
文章编号:1008-2956(2005)04-0064-04
修稿时间:2005-04-15

Study on Secure Communication Based IP Layer
YUAN Bo,ZHENG Jian-ling,WANG Hong-sheng,CHEN Kai-yan. Study on Secure Communication Based IP Layer[J]. Journal of Ordnance Engineering College, 2005, 17(4): 64-67
Authors:YUAN Bo  ZHENG Jian-ling  WANG Hong-sheng  CHEN Kai-yan
Abstract:It is difficult to communicate between Linux IPSec and IPSec embedded in Windows2000.After studying the Linux IPSec,NDIS network driver and WDM device driver,one implementation of IPSec based on the NDIS intermediate drivers in the Windows operating system is presented,which can communicate with the Linux IPSec.The intermediate drivers can encrypt and decrypt the packet sent from the upper level or received from the under level.The WDM device driver communicating with the application of user mode mechanism is used to realize duplex communication between kernel and the application layer.Besides,audit function is added based on the source code of Linux IPSec.Test result indicates that this system can communicate with the Linux IPSec.
Keywords:IPSec  security policy  drivers  cryptofraphy  
本文献已被 CNKI 维普 等数据库收录!
设为首页 | 免责声明 | 关于勤云 | 加入收藏

Copyright©北京勤云科技发展有限公司  京ICP备09084417号