
-  中文XML论坛 - 专业的XML技术讨论区  (http://bbs.xml.org.cn/index.asp)
--  『 XML安全 』  (http://bbs.xml.org.cn/list.asp?boardid=27)
----  XKMS文档中的一个问题  (http://bbs.xml.org.cn/dispbbs.asp?boardid=27&rootid=&id=25778)

--  作者:super_xixi
--  发布时间:12/21/2005 8:21:00 PM

--  XKMS文档中的一个问题
XKMS requests may employ a two-phase request protocol to protect against a denial of service attack. The two-phase request protocol allows the service to perform a lightweight authentication of the source of an XKMS request, specifically the service determines that the client is able to read messages sent to the purported source address. Although this mechanism provides only a weak form of authentication it prevents an attacker performing a Denial of Service attack by forcing the service to perform a resource intensive form of authentication such as the verification of a digital signature.----------------------------------------------2阶段请求为什么就可以防止拒绝服务攻击(Dos)? 为什么只用了一个比较"弱"的认证就可以防止?难道"perform a resource intensive form of authentication"就不需要耗费服务器资源了吗?
--  作者:super_xixi
--  发布时间:12/26/2005 10:02:00 PM

--  作者:super_xixi
--  发布时间:12/28/2005 4:57:00 PM

W 3 C h i n a ( since 2003 ) 旗 下 站 点