| 摘要 |
A multi-level security apparatus and method for a network employs a secure network interface unit (SNIU) coupled between each host or user computer unit (TS, S, S-U, PC, U) and a network, and a security manager (SM) coupled to the network, for controlling the operation and configuration of the SNIUs. Each SNIU is operative at a session level of interconnection which occurs when a user on the network is identified and a communication session is to commence. The SNIU is configured to perform a defined session level protocol, including the core function of user interface, session manager, dialog manager, association manager, data sealer, and network interface. The SM is implemented to ensure user accountability, configuration management, security administration, and validation key management on the network. |
