中文摘要：

为了保证网络接入终端的可信性和网络安全,结合可信网络连接技术以及高可用（HA）集群思想,提出了一种适于高可靠环境的可信网络构建方法。该方法在终端接入网络时,会根据平台身份是否合法,软件版本是否符合标准,是否接入了非法外设,以及网络端口的状态等安全属性进行可信准入判定,同时服务器端和客户端采用双冗余热备方式,提高系统的可靠性。实验测试表明,该方法能够成功实现服务的可信切换和终端的可信接入控制。

英文摘要：

To secure the credibility of network access terminals and the network security, a method for trusted network construction suitable for high availability environments was proposed by using the trusted network connection （TNC） technique combined with the high availability （HA） clustering. This method can make a strategy judge- ment for network access request according to platform ID, version of antivirus software, illegal storage device as well as network ports. At the same time, to the purpose of high availability, servers and clients are all designed on hot-standby. The availability of this method was verified by a test.