| Agent技术在分布式入侵检测系统的应用研究* |
| |
| 引用本文: | 马占飞,郑雪峰.Agent技术在分布式入侵检测系统的应用研究*[J].计算机应用研究,2008,25(4):1127-1129. |
| |
| 作者姓名: | 马占飞 郑雪峰 |
| |
| 作者单位: | 1. 北京科技大学,信息工程学院,北京,100083;内蒙古科技大学,包头师范学院,内蒙古,包头,014030
2. 北京科技大学,信息工程学院,北京,100083 |
| |
| 基金项目: | 国家“十五”重大科技攻关项目(2004BA616A-11-03) |
| |
| 摘 要: | 剖析了现有的分布式入侵检测系统及其在网络中的优势,将代理(agent)技术应用到分布式入侵检测系统中,并在此基础上提出了一种基于agent的分布式入侵检测系统(agent-based distributed intrusion detectionsystem,ADIDS)的新模型。ADIDS采取无控制中心的多agent结构,充分利用agent本身的独立性与自主性,尽量降低各检测部件间的相关性,避免了单个中心分析器带来的单点失效问题。各个数据采集部件、检测部件都是独立的单元,不仅实现了数据收集的分布化,而且将入侵检测和实时响应分布化,提高了系统的健壮性,真正实现了分布式检测的思想。
|
| 关 键 词: | 信息安全 入侵检测 代理 代理技术 分布式 |
| 文章编号: | 1001-3695(2008)04-1127-03 |
| 修稿时间: | 2007年1月19日 |
Application of agent in distributed intrusion detection system |
| |
| MA Zhan fei,ZHENG Xue feng.Application of agent in distributed intrusion detection system[J].Application Research of Computers,2008,25(4):1127-1129. |
| |
| Authors: | MA Zhan fei ZHENG Xue feng |
| |
| Abstract: | The inspiration was drawed from distributed intrusion detection system and agent technology,a novel agent-based distributed intrusion detection system(ADIDS) model was put forward and deeply researched to improve the detection capability of current network intrusion detection systems.In order to reduce the relevance of each detection components as far as possible,and avoid the simple point failure caused by the single central analyzer,the ADIDS model adopted the non-control center multi-agent,which used fully the independence agent.All of the ADIDS components were the independent unit,which had realized the distributing data collection and the real-time response.Thus the robustness of the entire system is enhanced,and the distributing detection is truly realized. |
| |
| Keywords: | information security intrusion detection agent agent technique distributed |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《计算机应用研究》浏览原始摘要信息 |
|
点击此处可从《计算机应用研究》下载全文 |
|
