| 基于入侵诱骗的网络动态防御研究 |
| |
| 引用本文: | 夏春和,李肖坚,赵沁平. 基于入侵诱骗的网络动态防御研究[J]. 计算机学报, 2004, 27(12): 1585-1592 |
| |
| 作者姓名: | 夏春和 李肖坚 赵沁平 |
| |
| 作者单位: | 北京航空航天大学计算机学院,北京,100083;北京航空航天大学计算机学院,北京,100083;北京航空航天大学计算机学院,北京,100083 |
| |
| 基金项目: | 国家航空基金 ( 0 3F5 10 60 ),预研基金 ( 4180 10 70 3 ),北京市教委项目“入侵检测与网络防护技术”资助 |
| |
| 摘 要: | 网络攻击的目标可以归纳为目标端的数据资源、计算资源及连接资源.为抵御以数据资源为目标的攻击,文章提出一种基于入侵诱骗的网络动态防御系统;以形式化方法描述并论证了该系统的网络动态防御能力;提出了通过分析行为操作序列判断行为性质的方法;最后给出了该系统的原型及其实现.
|
| 关 键 词: | 行为分析 入侵诱骗 虚拟环境 虚拟服务 虚拟环境控制 |
Research on Intrusion-Deception-Based Dynamic Network Defense |
| |
| XIA Chun-he,LI Xiao-Jian,ZHAO Qin-Ping. Research on Intrusion-Deception-Based Dynamic Network Defense[J]. Chinese Journal of Computers, 2004, 27(12): 1585-1592 |
| |
| Authors: | XIA Chun-he LI Xiao-Jian ZHAO Qin-Ping |
| |
| Abstract: | The targets of net attacks can be summed up to data resources, computational resources and connection resources. To against net attack, which focuses on data resource, an intrusion-deception-based dynamic network defensive system is presented in this paper. Authors formalized describe intrusion deception system and demonstrate the dynamic defensive abilities of the intrusion deception system. This paper proposes a method of behavior analysis and judging operation properties. It also presents prototype and implementation of intrusion deception system. |
| |
| Keywords: | behavior analysis intrusion deception virtual environment virtual service virtual environment control |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
