| 基于蜜罐的主动网络安全系统的研究与实现 |
| |
| 引用本文: | 孙知信, 杨加园, 施良辉, 王汝传. 基于蜜罐的主动网络安全系统的研究与实现[J]. 电子与信息学报, 2005, 27(3): 351-354. |
| |
| 作者姓名: | 孙知信 杨加园 施良辉 王汝传 |
| |
| 作者单位: | 南京邮电学院计算机系,南京,210003;南京邮电学院计算机系,南京,210003;南京邮电学院计算机系,南京,210003;南京邮电学院计算机系,南京,210003 |
| |
| 基金项目: | 国家高技术研究发展计划(863计划);江苏省高校自然科学基金;中兴通讯科研项目 |
| |
| 摘 要: | 采用自动的大规模扫描,在发现系统漏洞后,能够使对手在短时间内攻破计算机系统。传统的蜜罐系统在处理这些问题时有很多不足,因为其签名是可检测的。针对这些不足,本文从另一个角度构造了一个基于蜜罐的主动网络安全系统(Active Network Security System,ANSS)的诱骗系统。 ANSS位于真实的网络环境中,可以自始至终捕获到黑客的行为。仿真实验表明,ANSS使网络的安全性能达到了一个较高的水平,对入侵行为的监控和预防有着重要的意义。
|
| 关 键 词: | 网络安全 诱骗系统 蜜罐 |
| 文章编号: | 1009-5896(2005)03-0351-04 |
| 收稿时间: | 2003-12-09 |
| 修稿时间: | 2003-12-09 |
Research and Implementation of an Active Network Security System Based on Honeypots |
| |
| Sun Zhi-xin, Yang Jia-yuan, Shi Liang-hui, Wang Ru-chuan. Research and Implementation of an Active Network Security System Based on Honeypots[J]. Journal of Electronics & Information Technology, 2005, 27(3): 351-354. |
| |
| Authors: | Sun Zhi-xin Yang Jia-yuan Shi Liang-hui Wang Ru-chuan |
| |
| Affiliation: | Department of Computer Science and Technology NJUPT Nanjing 210003 China |
| |
| Abstract: | Exploit automation and massive global scanning for vulnerabilities enable adversaries to compromise computer systems shortly after vulnerabilities become known. Traditional honeypots have shortcomings to deal with these problems because their signatures can be inspected. Aiming at current research state, the paper constructs an Active Network Security System (ANSS) from another point of view, i.e., ANSS situated in a real network circumstance. ANSS is the same as other systems in Internet, and it can capture actions of hacker from beginning to end. The simulation results indicate that ANSS can elevate network's security performance to a higher level and ANSS has important impact on forecast and monitor attack activities. |
| |
| Keywords: | Network security Decoy system Honeypot |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《电子与信息学报》浏览原始摘要信息 |
|
点击此处可从《电子与信息学报》下载全文 |
|
