| 大规模入侵检测体系下追踪机制的设计与实现 |
| |
| 引用本文: | 阎慧,牛建强,曹元大,高玮玲.大规模入侵检测体系下追踪机制的设计与实现[J].河南科技大学学报(自然科学版),2003,24(2):69-72. |
| |
| 作者姓名: | 阎慧 牛建强 曹元大 高玮玲 |
| |
| 作者单位: | 北京理工大学,计算机科学工程系,北京,100081 |
| |
| 基金项目: | 国家计算机网络与信息安全管理办公室研究项目 (2 0 0 1-研 1-0 3 1) |
| |
| 摘 要: | 在大规模网络环境下,追踪恶意主机及其真实位置,对于整体网络的安全防御十分重要。因此,在大规模入侵检测系统中,利用各级控制中心的自动响应和处理功能,设计和实现了基于存储转发技术的追踪机制。测试表明,该机制可以有效地追踪和定位恶意主机的口地址,进一步完善了大规模入侵检测系统的监控功能。
|
| 关 键 词: | 入侵检测体系 追踪机制 网络安全 层次结构 |
| 文章编号: | 1000-5080(2003)02-0069-04 |
| 修稿时间: | 2002年12月20 |
Design and Implementation of a Tracing Mechanism in Large Scale Intrusion Detection Systems |
| |
| YAN Hui,NIU Jian-Qiang,CAO Yuan-Da,GAO Wei-Ling.Design and Implementation of a Tracing Mechanism in Large Scale Intrusion Detection Systems[J].Journal of Henan University of Science & Technology:Natural Science,2003,24(2):69-72. |
| |
| Authors: | YAN Hui NIU Jian-Qiang CAO Yuan-Da GAO Wei-Ling |
| |
| Abstract: | It is very important and necessary to trace malicious hosts and their real places in large-scale networks. A tracing mechanism based on store-and-forward strategy which makes use of automatic response and management of control centers at each level is designed and implemented in large-scale IDS.The checking experiments show that this mechanism is effective to trace and determine IP addresses of malicious hosts. So, this mechanism can improve the monitoring abilities of large scale IDS. |
| |
| Keywords: | Pursive strategies Intrusion detection system Electric networks |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
