通信学报
通信學報
통신학보
JOURNAL OF CHINA INSTITUTE OF COMMUNICATIONS
2009年
11期
127-134
,共8页
可信计算%行为特征%动态度量%可信网络连接
可信計算%行為特徵%動態度量%可信網絡連接
가신계산%행위특정%동태도량%가신망락련접
trusted computing%behavior characterization%real-time measurement%trusted network connect
在可信网络连接(TNC)框架下,结合完整性度量方式,通过对终端活动进程的行为属性实时分析并计算终端的"健康度",进而提出实施网络连接控制的方案.与已有的基于终端静态特征的控制方法相比,该方案在识别和隔离潜在安全威胁方面更有效.实验结果表明利用该方案能够实时地将感染恶意代码的终端阻断在网络之外.
在可信網絡連接(TNC)框架下,結閤完整性度量方式,通過對終耑活動進程的行為屬性實時分析併計算終耑的"健康度",進而提齣實施網絡連接控製的方案.與已有的基于終耑靜態特徵的控製方法相比,該方案在識彆和隔離潛在安全威脅方麵更有效.實驗結果錶明利用該方案能夠實時地將感染噁意代碼的終耑阻斷在網絡之外.
재가신망락련접(TNC)광가하,결합완정성도량방식,통과대종단활동진정적행위속성실시분석병계산종단적"건강도",진이제출실시망락련접공제적방안.여이유적기우종단정태특정적공제방법상비,해방안재식별화격리잠재안전위협방면경유효.실험결과표명이용해방안능구실시지장감염악의대마적종단조단재망락지외.
Under the framework of TNC, a new method was proposed to calculate the "healthy status" of a terminal based on analyzing the real-time characteristics of its behavior and process activity. Compared with the existing method, which based on static characteristics, the strategy could get a better performance, especially, on identifying and isolating the terminals with potential risk. The experimental result also shows that the proposed algorithm has the capability of finding and isolating terminals which are infected by malicious codes.