与传统网络相比,主动网络作为一种新型的中间节点可编程网络体系结构,具有很 大的灵活性和开放性,但同时这些特点也使主动网络的安全问题变得更加突出。本文从主动节点的角度进行安全性分析,提出了一系列安全防范措施,并在此基础上设计了一种主动网络节点的安全体系模型。该模型采用认证、授权、主动权能动态加载策略等安全措施保护主动节点资源免受恶意信包的攻击。 关键词:主动网络;网络安全;认证;授权;主动权能 Analysis and Research on Security Model of Active Network ZHANG Ling,DING Zhen-guo (XIDIAN University, Xi’an 710071, China) Abstract:Compared with the traditional network, Active network is more flexibility and opened as a new network architecture with the programmable intermediate network node, but at the same time, its security issue have become more prominent. This paper makes the security analysis from the sight of the active network node, put forward a series of security measures and build a new security model of active network node based on them. This model protects the active network node from the attack of vicious capsule with authentication, authorization and active capability loads strategy dynamically. Key words: Active network; Network Security; Authentication; Authorization; Active Capability