信息网络安全 ›› 2015, Vol. 15 ›› Issue (5): 1-9.doi: 10.3969/j.issn.1671-1122.2015.05.001

• 等级保护 •    下一篇

Windows中的网络连接和数据传输管理研究

卿斯汉1,2,3()   

  1. 1. 北京大学软件与微电子学院,北京 102600
    2. 中国科学院软件研究所,北京 100190
    3. 中国科学院信息工程研究所信息安全国家重点实验室, 北京 100093
  • 收稿日期:2015-03-30 出版日期:2015-05-10 发布日期:2018-07-16
  • 作者简介:

    作者简介: 卿斯汉(1939-),男,湖南,研究员,主要研究方向:安全协议、可信计算、云安全、操作系统安全等。

  • 基金资助:
    国家自然科学基金[61170282]

Research on the Management of Network Connection and Data Traffic in Windows

QING Si-han1,2,3()   

  1. 1. School of Software and Microelectronics, Peking University, Beijing 102600, China
    2. Institute of Software, Chinese Academy of Sciences, Beijing 100190, China
    3. State Key Laboratory of Information Security, Institute of Information Engineering, Chinese Academy of Sciences, Beijing 100093, China
  • Received:2015-03-30 Online:2015-05-10 Published:2018-07-16

摘要:

随着因特网应用的普及与IT技术的快速发展,Windows新版本不断推出,以适应因特网应用的多样化和网络安全的新态势。可以看出,微软不仅在操作系统的安全方面做了最大的努力,而且在网络安全与网络应用性能的改进方面也下了很多功夫。有鉴于此,文章以Windows的最新服务器版本Windows Server 2012和Windows Server 2012 R2为基础,对Windows网络连接和数据传输管理方面的性能与安全性改进进行讨论与分析。受篇幅所限,文章重点分析了Windows防火墙、数据中心传输控制协议(DCTCP)、Windows Web服务器(IIS)、远程访问机制、Windows DNS服务器、Windows DHCP 服务器,以及Hyper-V网络虚拟化等内容。然而水涨船高,多种新应用的出现产生新的瓶颈,新网络攻击技术的出现使网络应用受到新的安全威胁,因此不断的改进与增强永无止境。

关键词: Windows Server 2012, 网络连接, 数据传输, 网络安全

Abstract:

With the popularization of Internet applications and the rapid development of IT technologies, Microsoft continuously launches new versions of Windows to keep up with changed circumstances of network security and diversification of network applications. It can be seen that Microsoft has made its greatest effort to enhance OS security. At same time, Microsoft has conducted a great deal of work to improve network security and performances in network applications. To this end, based on the following two new versions , Windows Server 2012 and Windows Server 2012 R2, this paper discusses and analyzes the improvements on performance and security in terms of network connection and data transmission, focusing on Windows firewall, DCTCP, Windows Web server(IIS), remote access mechanism, Windows DNS and DHCP servers, and Hyper-V network virtualization, etc. Nevertheless, a rising tide lifts all boats, diversified novel applications introduce new bottlenecks, and more sophisticated attack technologies lead to new threats to network applications. Consequently, continuous improvement and enhancement is a never-ending process.

Key words: Windows Server 2012, network connection, data transmission, network security

中图分类号: