| 安全的分布式入侵检测系统框架 |
| |
| 引用本文: | 陈雪斌,刘峰,赵志宏,骆斌. 安全的分布式入侵检测系统框架[J]. 计算机工程与设计, 2009, 30(14) |
| |
| 作者姓名: | 陈雪斌 刘峰 赵志宏 骆斌 |
| |
| 作者单位: | 南京大学,软件学院软件新技术国家重点实验室,江苏,南京,210089 |
| |
| 基金项目: | 国家自然科学基金,江苏省高新技术计划基金 |
| |
| 摘 要: | 针对分布式入侵检测系统在安全上的需求,从系统基础架构、身份认证和安全通信等方面进行研究分析,提出了一个利用移动代理技术实现检测引擎,并使用公钥基础设施(PKI)认证技术和椭圆曲线密码(ECC)技术保障系统整体安全性的分布式入侵检测系统框架--SADIDS,能有效地保障入侵检测系统的安全,同时具有实现简单灵活、移动性强的特点.
|
| 关 键 词: | 网络安全 入侵检测 移动代理 公钥基础设施 椭圆曲线密码 |
Secure architecture for distributed intrusion detection system |
| |
| CHEN Xue-bin,LIU Feng,ZHAO Zhi-hong,LUO Bin. Secure architecture for distributed intrusion detection system[J]. Computer Engineering and Design, 2009, 30(14) |
| |
| Authors: | CHEN Xue-bin LIU Feng ZHAO Zhi-hong LUO Bin |
| |
| Abstract: | To meet the security requirements of distributed intrusion detection system (DIDS), after analyzing the system infrastructure, authentication and safe communications of DIDS, a secure architecture for distributed intrusion detection system called SADIDS is pre-sented. Mobile agent technology is adopted to implement the detection engine, public key infrastructure (PKI) and elliptic curve cry-ptosystem (ECC) are used to ensure its security. It keeps IDS safe with the advantages of easy implementation, flexibility and mobility. |
| |
| Keywords: | network security intrusion detection mobile agent public key infrastructure elliptic curve eryptosystem |
| 本文献已被 万方数据 等数据库收录! |
|
