| 基于遗传算法的蜜罐系统 |
| |
| 引用本文: | 宫婧,;孙知信,;徐虹霞.基于遗传算法的蜜罐系统[J].南京邮电学院学报(自然科学版),2008(6):50-55. |
| |
| 作者姓名: | 宫婧 ;孙知信 ;徐虹霞 |
| |
| 作者单位: | [1]南京邮电大学数理学院,江苏南京210003; [2]南京邮电大学计算机技术研究所,江苏南京210003; [3]南京大学计算机软件新技术国家重点实验室,江苏南京210093; [4]北电网络有限公司,北京100006 |
| |
| 基金项目: | 国家自然科学基金(60572131)、科技部科技型中小企业创新基金(08C26213200495)、江苏省科技攻关(BE2007058)、江苏省高校自然科学基础研究计划(08KJB520005)、华为基金、南京邮电大学科研基金(NY206050)资助项目 |
| |
| 摘 要: | 入侵诱骗系统作为一种网络安全工具,其价值在于被扫描、攻击和入侵时,通过创建一个高度可控的攻击环境,从而捕获尽可能多的入侵信息。基于这些信息,分析入侵行为,预防更多的恶意破坏,从而更有效的保护网络。介绍一种基于遗传算法的蜜罐系统,其关键技术包括隐蔽的数据捕捉和基于遗传算法的行为分析技术。实验证明,该系统能有效捕捉恶意行为,防御多种新型攻击。
|
| 关 键 词: | 蜜罐 遗传算法 数据捕获 行为分析 |
Trap System Based on Generic Algorithm |
| |
| Affiliation: | GONG Jing, SUN Zhi-xin, XU Hong-xia( 1. College of Mathematics and Physics, Nanjing University of Posts and Telecommunications, Nanjing 210003, China; 2. Institute of Computer, Nanjing University of Posts and Telecommunications, Nanjing 210003, China ;3. State Key Laboratory for Novel Software Technology, Nanjing University, Nanjing 210093, China ;4. Nortel Networks(China) Ltd, Beijing 100006,China) |
| |
| Abstract: | Intrusion deception system is one kind network safety method. When a system is intruded,it can set a controllable attack circumstance, so it can capture intrusion information as much as possible. Based on these information, we can analyze intrusion action, and prevent farther hostility destroy, there fore we can protect network more effectively. This paper introduces a kind of trap system based on generic algorithm, whose key technologies include hidden data catch technology and behavior analysis technology based on generic algorithm. Experiments prove the system can capture hostility behavior, and defense some new attacks. |
| |
| Keywords: | Honeypot Generic algorithm Data capture Behavior analysis |
| 本文献已被 维普 等数据库收录! |
|
