回顾“tcpip协议套件安全问题”外文翻译.doc

A Look Back at “Security Problems in the TCP/IP Protocol Suite”
Steven M. Bellovin
AT&T Labs—Research
bellovin@acm.org
Abstract
About fifteen years ago, I wrote a paper on security problems
in the TCP/IP protocol suite, In particular, I focused on
protocol-level issues, rather than implementation flaws. It
is instructive to look back at that paper, to see where my focus
and my predictions were accurate, where I was wrong,
and where dangers have yet to happen. This is a reprint of
the original paper, with added commentary.
1. Introduction
The paper “Security Problems in the
TCP/IP Protocol Suite” was originally published
in Computer Communication Review,
Vol. 19, No. 2, in April, 1989. It was a
protocol-level analysis; I intentionally did not
consider implementation or operational issues.
I felt—and still feel—that that was the
right approach. Bugs come and go, and everyone’s
operational environment is different.
回顾“TCP/IP协议套件安全问题”
摘要
大约十五年前，我写了一篇关于TCP/ IP协议安全问题的论文，我特别侧重于协议层面的问题，而不是实施的缺陷。回顾那篇论文确实具有指导意义。它可以指导我去看看哪里的重点和预测是准确的，哪里是错的，还有哪里的危险尚未发生。这是一个在原来论文基础上加了评注的重印稿。
1.引言
该论文中的“TCP/ IP协议套件的安全问题”最初是在1989年4月《计算机通信研究》第19卷第2号出版。这是一个协议层面的分析，我故意不考虑实施或业务问题。我觉得而且仍然觉得，那是正确的做法。错误来来去去，大家的经营环境是不同的。但解决协议层面的问题很难，特别是如果你想保持与安装基础的兼容性。
本文是我的原创作品的回顾。新的评注以无衬线字体，缩进方式显示。除了推出时从troff到LAT EX转换时可腀@鱿值拇砦笾猓渌淖直３植槐洹Ｎ乙丫肟送暾牟慰迹词瓜衷谟懈玫陌姹尽５比唬慰己怕牒头忠呈遣煌模唤谑３植槐洌艘桓鲂碌摹敖崧邸安糠帧Ｗ魑话愎嬖颍雷⒏嫫渌致鄣恼陆凇Ⅻbr>