Zero-trust model-oriented access control device and implementation method

Zero-trust model-oriented access control device and implementation method

The invention relates to the technical field of information security, and discloses a zero-trust-model-oriented access control device, which comprises an access control processor and a policy decision processor, the access control processor is in communication connection with the policy decision pro...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: MEI YAN, WU JUNCHANG, ZHA ZHENGPENG, HU BAOSHENG, SHENG CHENGHONG, XU JIAN, YUAN QIUJIN, WANG JIANING, CAO XIN, LI WEIDONG
Format: Patent
Sprache:chi ; eng
Schlagworte:
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:The invention relates to the technical field of information security, and discloses a zero-trust-model-oriented access control device, which comprises an access control processor and a policy decision processor, the access control processor is in communication connection with the policy decision processor, and each processor is provided with an independent memory and a disk. And a unified power supply is used for supplying power. According to the zero-trust model-oriented access control device and the implementation method, a zero-trust security agent is a control execution point of a zero-trust service and is also a gate oriented to an external attacker, and the security of the zero-trust security agent also determines the security of a zero-trust system; through the hardware design of double-host-machine security isolation and the design of security schemes such as white list access control, protocol filtering and a dedicated channel, the capability of the zero-trust security agent for resisting external at