| 分布式自治型计算机取证系统研究 |
| |
| 引用本文: | 鄢喜爱,杨金民,常卫东. 分布式自治型计算机取证系统研究[J]. 计算机应用, 2008, 28(10): 2485-2487 |
| |
| 作者姓名: | 鄢喜爱 杨金民 常卫东 |
| |
| 作者单位: | 湖南大学,软件学院,长沙,410082;湖南公安高等专科学校,计算机系,长沙,410138;湖南大学,软件学院,长沙,410082;湖南公安高等专科学校,计算机系,长沙,410138 |
| |
| 基金项目: | 国家自然科学基金,公安部应用创新计划 |
| |
| 摘 要: | 针对目前取证系统的时效性不足和通信瓶颈等问题,提出了一种分布式自治型计算机取证系统。该系统利用自治取证节点对所有可能的入侵行为进行实时动态取证,并采用了安全有效的方式对证据及时保存。由于取证节点具有自治取证能力,系统的整体性能得到了优化。实验表明:该系统能实时取到真实有效的电子证据,并具有很强的容错能力。
|
| 关 键 词: | 计算机取证 分布式 自治型 |
| 收稿时间: | 2008-04-15 |
Research of distributed and autonomous computer forensics system |
| |
| YAN Xi-ai,YANG Jin-min,CHANG Wei-dong. Research of distributed and autonomous computer forensics system[J]. Journal of Computer Applications, 2008, 28(10): 2485-2487 |
| |
| Authors: | YAN Xi-ai YANG Jin-min CHANG Wei-dong |
| |
| Affiliation: | YAN Xi-ai1,2,YANG Jin-min1,CHANG Wei-dong2(1. Software College,Hunan University,Changsha Hunan 410082,China,2. Computer Department,Hunan Public Security College,Changsha Hunan 410138,China) |
| |
| Abstract: | Currently, most of computer forensics systems are not real-time, and often cause communicational bottleneck. In order to overcome the shortages, a distributed and autonomous computer forensics system was presented. By using the autonomous forensics node, the system could obtain real-time evidence dynamically as soon as network intrusions took place,in which the evidence could be saved in a safe way in time. This way of autonomous forensics could optimize system performance. Experimental result shows that th... |
| |
| Keywords: | computer forensics distributed autonomous model |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《计算机应用》浏览原始摘要信息 |
|
点击此处可从《计算机应用》下载全文 |
|
