数据与计算发展前沿 ›› 2021, Vol. 3 ›› Issue (3): 1-8.

doi: 10.11871/jfdc.issn.2096-742X.2021.03.001

• 网络通信与安全专刊 •    下一篇

网络安全技术的新趋势探讨

荆继武1,*(),龙春2(),李畅1()   

  1. 1.中国科学院大学,计算机科学与技术学院,北京 100049
    2.中国科学院计算机网络信息中心,北京 100190
  • 收稿日期:2021-05-31 出版日期:2021-06-20 发布日期:2021-07-09
  • 通讯作者: 荆继武
  • 作者简介:荆继武,中国科学院大学密码学院,教授,主要研究方向为信息安全、数据资产保护,在国内外重要期刊及会议上发表学术论文100余篇,完成专著2部。
    本文主要承担工作为提出思路,撰写文章。
    JING Jiwu is a professor of School of Cryptography, University of Chinese Academy of Sciences. His research interests include information security, data asset protection. He has published more than 100 academic papers in important journals and conferences at home and abroad as well as 2 monographs.
    The main work of this paper is to put forward ideas and write articles.
    E-mail: jwjing@ucas.ac.cn|龙春,中国科学院计算机网络信息中心,正研级高级工程师,主要研究方向为信息安全、数据保护,在国内外重要期刊及会议上发表学术论文10余篇,拥有3项专利并主持多个国家级项目。
    本文主要承担工作为提出思路,撰写文章。
    LONG Chun is a senior engineer of Computer Network Infor-mation Center, Chinese Academy of Sciences. His research interests include information security and data protection. He has published more than 10 academic papers in important journals and conferences at home and abroad, obtained 3 patents and presided over several national projects.
    The main work of this paper is to put forward ideas and write articles.
    E-mail: longchun@cnic.cn|李畅,中国科学院大学计算机科学与技术学院,硕士研究生,主要研究方向为信息安全、数据保护。
    本文主要承担工作为进行内容调研,撰写文章。
    LI Chang is a master student at the com-puterscience and technology department, University of Chinese Academy of Sciences, majoring in information security and data protection.
    The main work of this paper is to conduct content research and write articles
    E-mail: lichang18@mails.ucas.ac.cn

New Trend of Cyberspace Security Technology

JING Jiwu1,*(),LONG Chun2(),LI Chang1()   

  1. 1. Department of Computer Sciences and Technology, University of Chinese Academy of Sciences, Beijing 100049, China
    2. Computer Network Information Center, Chinese Academy of Sciences, Beijing 100190, China
  • Received:2021-05-31 Online:2021-06-20 Published:2021-07-09
  • Contact: JING Jiwu

摘要:

【目的】 面对数字时代巨大变革,探讨网络安全技术的发展趋势,总结零信任、入侵容忍、白盒安全等开放性网络安全技术的基本特点。【方法】 分析目前网络空间安全发展现状,对当前网络安全可能存在的问题进行说明,结合密码学等其他安全科学技术的历史发展,探究安全技术发展的新思路。【结果】 提出安全系统体系走向开放的思路和所需要的技术方法,探讨未来网络空间安全技术的新方向。【结论】 开放式的安全体系可以有效面对当前网络空间发展带来的安全问题,是安全技术发展的一种新趋势。

关键词: 安全技术, 零信任, 入侵容忍, 白盒安全

Abstract:

[Objective] With the transformation to the digital era, this paper discusses the trend of cyberspace security technology and summarizes the characteristics of Zero-Trust, Intrusion Tolerance, White-Box Cryptography, and other open cyberspace security technologies. [Methods] This paper analyzes the development of cyberspace and its security by describing the problems existing in the current cyberspace security technologies. Combined with the development of cryptography and other security protection methods, the paper explores ideas for the development of network security technologies. [Results] This paper puts forward the idea and the required technical methods of open security system architectures. It provides a new direction for cyberspace security technologies. [Conclusions] The open security system architecture can effectively solve the existing and unsolvable security problems in the current cyberspace, which is a new trend of cyberspace security technology.

Key words: safety technology, zero trust, invasion tolerance, white box Cryptography