摘要
SCTP是一种新的通用传输层协议,提供面向连接面向用户消息的可靠传输服务。本文分析了SCTP相对于TCP和UDP的一些新的特性,特别是单一SCTP关联对多IP地址的支持。然后简单介绍了IPsec这一目前广泛使用的网络层安全协议标准的工作原理。在使用IPsec为SCTP提供安全保障时,为了适应SCTP的新特性,要求对传统的IPsec实现方案作出相应的改进。文中就IPsec在实现上应该涉及和注意的一些问题以及这些问题可能的解决方式进行了讨论。
Stream Control Transmission Protocol (SCTP) is a TCP-like, general-purpose reliable data transport protocol standardized by the Internet Engineering Task Force(IETF). IPsec is the most popular Internet security standard currently. Some new features of SCTP must be accommodated when IPsec facilitate its use in securing SCTP traffic.This paper firstly analyses these new features of SCTP, introduces the basic working principles of IPsec, and then discusses some issues that must be paid attention to and solved when implementing IPsec to provide security protection for SCTP.
出处
《贵州大学学报(自然科学版)》
2005年第1期64-68,共5页
Journal of Guizhou University:Natural Sciences
关键词
SCTP关联
流
安全关联
安全策略
IKE
选择符
SCTP association
Stream
Security Associations
Security Policy
IKE
Selector
