| 网络入侵检测与对抗的技术及实现 |
| |
| 引用本文: | 翟健宏.网络入侵检测与对抗的技术及实现[J].计算机工程,2004,30(5):131-132,172. |
| |
| 作者姓名: | 翟健宏 |
| |
| 作者单位: | 哈尔滨工业大学计算机科学与技术学院,哈尔滨,150006 |
| |
| 摘 要: | 给出一个丛于边界路由器的网络入侵检测、网络异常检测及对抗联动系统的设计方案,详细介绍了应用于该系统的关健技术及算法,包括基于零拷贝思想的捕包技术、状态机匹配技术以及网络异常检测报警阈值的动态调节算法;同时给出了在大流量网络环境下,该系统的改进设计方案。
|
| 关 键 词: | 入侵特征 旁路监听 阈值向量 模式匹配 访问列表 |
| 文章编号: | 1000-3428(2004)05-0131-02 |
Technique and Realization of Net Intrusion Detection and Antagonize |
| |
| ZHAI Jianhong.Technique and Realization of Net Intrusion Detection and Antagonize[J].Computer Engineering,2004,30(5):131-132,172. |
| |
| Authors: | ZHAI Jianhong |
| |
| Abstract: | This paper proposes a linkage system design about Web intrusion detection and antagoniz ation based on boundary router. And exhaustively introduces key technique and arithmetic that are used in this system. Including the catching data bag based on zero times copying thinking, the state machine matching technique and the arithmetic about dynamic changing alarm valve of checking net abnormity. This paper proposes the system designing plan under a large flow Web circumstance. |
| |
| Keywords: | Intrusion character Monitor bypass Valve vector Mode matching Access list |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
