| As the rapid development of computer network,the network security has become more and more important. Firewall is a kind of effective defence measure for network security and has been used in many types of networks.However,traditional firewall is based on the hypothesis of the security of Intranet and the stogie access point,so it exists some faults such as the limitation of defence area,dependence of network structure, single point of failure and flow bottleneck etc. In order to improve the performance of the traditional firewall technologies, new-style Distribute d Firewall is advanced.Policy distribution technologies is one of the key technologies in Distributed Firewall. Policy distribution in Distributed Firewall involves two technologies:Distributed object technology and policy information security technology. To solve the impenetrable firewall problem of old distributed object technology's into Internet,this paper brings up SOAP based solution,studies the implementation principle of SOAP protocol in policy distribution technologies,and designs the Policy Distribution System based on SOAP. While for the information security in policy distribu-tion,this paper raises a solution to ensure the security of policies by SOA-P security extension.This paper advances the concept of DFPS(Distributed Firewall Policies Sharing).Due to the problem of seldom interaction among Distribute-d Firewalls,the solution to policies sharing of Distributed Firewalls based on Web Services is presented. The hierarchy,working flow and key technologies of this project are described in detail. This solution provides a new idea to the field of network securiy. |
PDF Full Text Request