| 摘要 |
An internal network security system and a method thereof are provided to connect or isolate a user terminal to or from a network according to whether the user terminal observes a security policy in an internal network which has a switching system not supporting the IEEE 802.1x. A user terminal(210) can be connected to a network through a terminated switch(220) and has a security policy execution program. An authentication server group(250) is connected with the user terminal through the network to authenticate the user terminal which attempts a network connection and send at least one or more security policies to the user terminal. When the user attempts to connect to the network, an enforcer(260) blocks packets sent from the user terminal from the network, and then connects the user terminal to the authentication server group. If one or more security policies are accepted from the authentication server group, the user terminal performs the security policy execution program.
|
