| 分布式网络行为监控系统设计与实现 |
| |
| 引用本文: | 刘海宝,蔡皖东,许俊杰,王黎.分布式网络行为监控系统设计与实现[J].微电子学与计算机,2006,23(3):76-79. |
| |
| 作者姓名: | 刘海宝 蔡皖东 许俊杰 王黎 |
| |
| 作者单位: | 西北工业大学计算机学院,陕西,西安,710072 |
| |
| 基金项目: | 西北工业大学校科研和教改项目 |
| |
| 摘 要: | 针对现有网络行为监控系统在监控力度和范围上的不足,文章提出了一种分布式网络行为监控系统(DNBM)。本系统由监管中心和若干个主机监控端组成。监管中心集中制定分发策略,日志审计查看;主机监控端则实现主机网络行为监控。主机监控端采用三层过滤,从内容,到应用,再到底层数据包,实现了对网络行为更为空面的监控;同时,采用对远程线程插入和注册表写操作的实时监控,更好限制了恶意代码的激活与执行,大大提升了系统的安全性与可靠性。
|
| 关 键 词: | 三层过滤 抗木马 远程线程 中间驱动 |
| 文章编号: | 1000-7180(2006)03-004 |
| 收稿时间: | 2005-08-11 |
| 修稿时间: | 2005年8月11日 |
Design and Implement of Distributed Network Behavior Monitoring System |
| |
| LIU Hai-bao,CAI Wan-dong,XU Jun-jie,WANG Li.Design and Implement of Distributed Network Behavior Monitoring System[J].Microelectronics & Computer,2006,23(3):76-79. |
| |
| Authors: | LIU Hai-bao CAI Wan-dong XU Jun-jie WANG Li |
| |
| Abstract: | The behavior of the network is controlled to the security threat brought to the system that users surf the Net, This text has proposed the design plan of a kind of distributed network behavior monitoring system, and Relevant technology, give a three level filtering project, and the method of hooking the operation of writing register table and remote thread injection , Practice has proved that the monitoring system has improved PC system's capability of anti Trojan and security. |
| |
| Keywords: | Three level faltering Anti trojan Remote thread Intermediate driver |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
