基于IPsec的企业网络远程访问系统的设计与实现-软件工程专业论文.docxVIP

Abstract With the development of enterprise information, the traditional business methods can not meet the current demand. Remote access to corporate network resources is becoming more common and mobile office will gradually become the mainstream. For example, employees on business often need to access corporate E-mail, employees need to work at home due to some special reasons. Compared to the traditional office, mobile office has a greater flexibility on work place and working hours. However, with remote access to corporate network resources become more frequent, network security problems arise. Remote access to corporate resources may give companies a tremendous threat to network security, increasing the vulnerability of the internal network, easy to breed security risks, such as disclosure of corporate secrets. In order to ensure security access to corporate resources, It is necessary to adopt some stable and reliable security measures. Internet Engineering Task Force (IETF) proposed a new framework for security protocol, that is IPsec, which provides security services with encryption at the IP layer to ensure the confidentiality and security of communications. IPsec is a framework for security protocol, including AH(Authentication Header), ESP(Encapsulating Security Payload), IKE(Internet Key Exchange) and so on. Security services provided by IPsec comprise access control, data integrity, data confidentiality, data origin authentication, anti-replay attacks and so on. VPN, or virtual private network, has becoming the current mainstream approach of remote access to corporate network. In short, VPN is the expansion of the internal network, which is a technology through the Internet and internal network to establish the temporary and secure communications tunnel. Based on IPsec, which is a framework of open standards. We have analysis and research on it, carry out analysis and research on the current technology such as VPN and propose a new future IPsec-based rem