共查询到20条相似文献,搜索用时 171 毫秒
1.
分布式高速网络入侵防御系统研究 总被引:5,自引:0,他引:5
网络的安全问题日益严重,DoS,DDoS等暴力攻击成为千兆级别高速网络上的主要攻击手段,蠕虫的传播占据了大量的网络带宽.传统的入侵检测系统不能有效地处理大量的网络数据,且无法及时阻断检测到的攻击行为.本文针对以上问题,提出了一种可有效运行在高速网络上的分布式入侵检测与阻断系统.此类系统也称为入侵防御系统IPS(Intrusion Prevention System). 相似文献
2.
3.
基于网络的入侵防御系统 总被引:4,自引:2,他引:4
基于网络的入侵检测系统(Network-Based Intrusion Detection System,IDS)存在着策略维护困难、防止攻击能力差、攻击响应不及时等局限性。网络入侵防御系统(Intrusion Prevention System,IPS)采用串联工作方式,能有效地防御网络攻击,抑制网络蠕虫病毒的传播,最终对关键网段的保护起重要作用。 相似文献
4.
入侵防御系统的研究与应用 总被引:1,自引:0,他引:1
入侵防御系统是网络安全领城为弥补防火墙及入侵检测系统(IntrusionDetectionsystem)的不足而新发展起来的一种计算机信息安全技术。本文首先介绍了入侵防御系统(IPS)工作原理、IPS的分类,并且对比了防火墙、IDS相对于IPS的局限,提出通过部署入侵防御系统(IPS)来提升网络安全,再就个人经验提出应该怎样在企业网络中部署IPS。最后总结了IPS的发展前景。 相似文献
5.
围绕网络入侵检测系统遭受攻击的根源--网络入侵检测系统与其所保护网络之间的异步性,用具体实例分析了攻击方如何从TCP/IP层面对网络入侵检测系统发起基于异步性的攻击,并对攻击的特点和手段作了深入的剖析.从如何消除网络入侵检测系统与所保护网络之间的异步性的角度,提出了相应的防御对策,为入侵检测研究人员进一步完善网络入侵检测系统提供了清楚的思路和明确的目标. 相似文献
6.
7.
8.
随着因特网应用的迅速升级,网络安全问题日益严峻。传统的防火墙、入侵检测系统在一定程度上构建了安全防御体系,但由于其自身的不足以及对网络攻击缺乏主动响应功能,并随着网络入侵行为的增加和网络攻击水平的不断提高,尤其是混合攻击技术的发展,单一的防护措施已经不能挡住各种攻击,企事业单位更加需要对网络进行防护,于是引入一种全新的防御技术——入侵防御系统(IPS)已成为必须。 相似文献
9.
10.
基于模式匹配和神经网络的分布式入侵防御系统的研究 总被引:5,自引:0,他引:5
本文提出一种基于模式匹配和神经网络技术的分布式入侵防御系统模型,设计一个基于该模型的入侵防御系统(称为Adidp)。并详细讨论该系统的体系结构、特点和实现技术等。该模型能够对大型高速分布异构网络进行有效的入侵检测和防御。 相似文献
11.
《Information Security Journal: A Global Perspective》2013,22(3):86-99
ABSTRACTCloud is prone to a set of well-known network and host-based attacks from cloud insiders, cloud users, and outside attackers. This paper concretely focuses over the detection of malware and program modification-based attacks through identification of malicious program executions and malware at the client virtual machines and hosts in a cloud environment. The paper also focuses on the related techniques for malware detection using system call sequence measures. An immediate system call structure-based program cum system-wide technique is proposed for the detection of anomalous program executions and malwares in the cloud. The algorithm is validated over University of New Mexico sendmail data set. Effective deployment architecture for such an implementation is also presented as a distributed cum centralized intrusion prevention system (IPS). The proposed IPS also solves the problem of individual IPS getting malformed at client virtual machine with the use of both process and system level based detection strategies. The paper provides detailed results and experimentations of the proposed intrusion detection technique on a private cloud with open nebula and virtual box. 相似文献
12.
在网络安全方面,入侵防御系统IPS是为了弥补网络防火墙及入侵检测系统IDS的不足而诞生的一种防御性质的网络安全技术.不同的入侵防御系统实现的方式各不一样,但其共同点是在威胁进入局域网之前进行防御检测。文章论述了目前校园局域网存在的安全隐患、IPS的概念和分类,校园中如何部署IPS及其IPS的优势。 相似文献
13.
千兆网络入侵防御系统高速数据包处理的研究与实现 总被引:1,自引:0,他引:1
随着千兆以太网的广泛应用和网络入侵行为的日益复杂化,其网络入侵防御系统的需求越来越迫切了,通过对网络入侵防御系统的关键技术系统分析,提出了一种新的千兆网络入侵防御系统的总体解决方案,重点描述了其高速数据包处理硬件平台的具体设计和实现技术,并详细介绍其工作流程,最后给出了这种高速数据包处理硬件平台的测试性能和结论。 相似文献
14.
事件检测引擎是基于FTP协议解析引擎中的重要组成部分之一。在对传统的网络安全技术进行研究的基础上,设计和实现了基于IPS的FTP协议事件检测引擎。阐述了FTP协议事件检测引擎的总体框架,建立了相关的模型。该引擎采用先进的NEL语言开发平台,实时地检测出异常流量,实现了实时、高性能的网络安全。 相似文献
15.
贾雷 《网络安全技术与应用》2013,(9):74-76
随着信息化的发展和网络应用的普及,针对企业和个人的各种攻击越来越复杂,攻击技术和策略也在不断调整,传统的入侵防御系统必须进化到能够处理先进的有针对性的威胁。首先介绍了下一代网络入侵防御系统的概念和主要功能,接着分析了和其它网络安全产品的关系,然后,阐述了下一代网络入侵防御典型产品的关键技术,最后,指出了下一代网络入侵防御的发展前景。 相似文献
16.
Jiunn‐Shyong Lin Kei‐Hsiung Yang Shu‐Hsia Chen 《Journal of the Society for Information Display》2004,12(4):533-537
Abstract— The TFT‐LCD market is growing rapidly, and the replacement of CRT TV by LCD TV requires the implementation of LC modes with wide viewing angles and high brightness. The IPS mode is an excellent technology to realize wide viewing angles, but it has a low aperture ratio that has now been improved by Advanced Super‐IPS (AS‐IPS). In this paper, we propose a novel pixel structure design that not only increases the aperture ratio but also reduces the crosstalk. We have improved the current AS‐IPS aperture ratio by 1.25 times and effectively reduced the capacitive coupling ratio from 1.2% to 0.05%. 相似文献
17.
S. D. Yeo 《Journal of the Society for Information Display》2004,12(4):349-352
Abstract— Super IPS (S‐IPS) technology has intrinsic advantages in several aspects required for TV applications. Particularly, the wide‐viewing‐angle property and fast gray‐to‐gray response time of S‐IPS LCDs are both necessary requirements for family and individual use for LCD TVs. Given these benefits and other advantages S‐IPS provides, LG.Philips LCD has developed high‐performance S‐IPS LCDs for TV, which have now become competitive with plasma‐display panels (PDPs), in addition to other modes of LCD TVs as well as CRTs. This article will discuss why S‐IPS technology is the leading choice for LCD‐TV applications. 相似文献
18.
This paper presents the use of a micro-controller-based integrated process supervision (IPS) system as a real-time platform for investigative work in structuring expert control. Two different control approaches, based on classical and artificial intelligence techniques, were integrated within IPS and serve as practical examples of the structured approach to expert control. The IPS is a refinement of the expert control architecture. It allows the integration of several control techniques in a single generic framework. Specifically, the paper presents the extensive experimental results derived from a micro-controller-based implementation of IPS on the real-time control of a typical industrial heat-exchanger process. The classical approach, based on auto-tuning techniques, was implemented under the IPS framework. Three auto-tuning techniques, namely Ziegler–Nichols tuning, amplitude tuning and phase tuning were incorporated. In addition, neural-network-based control techniques using the modified cerebellar model articulation controller (MCMAC) were also seamlessly incorporated within the IPS scheme. The real-time experimental results using the IPS architecture significantly demonstrated the effectiveness of IPS in handling varying operating conditions. Furthermore, the inclusion of both AI and classical control techniques within a common supervisory framework adequately shows the generality of the architecture. 相似文献
19.
20.
焦毅霞 《数字社区&智能家居》2008,3(12):1592-1594
网络入侵检测系统等传统的安全防御技术对日新月异的网络攻击手法缺乏主动响应,普遍具有自适应差、误报率高等问题。该文通过对人工免疫系统的工作原理和体系结构的研究,建立了一个基于Multi—Agent的入侵防御体系模型。该模型把入侵检测系统改进为入侵防御系统,具有分布性、自组织性和轻负荷的特性,能较好地解决入侵检测系统存在的上述问题。 相似文献