| 基于规则转换的入侵防御系统的研究与实现 |
| |
| 引用本文: | 芦效峰,王恩波.基于规则转换的入侵防御系统的研究与实现[J].网络安全技术与应用,2005(1):32-34. |
| |
| 作者姓名: | 芦效峰 王恩波 |
| |
| 作者单位: | 北方工业大学计算中心,北京,100041 |
| |
| 基金项目: | 北京市科研基金项目(2002KJD2A)资助。 |
| |
| 摘 要: | 入侵防御系统不仅能检测网络中的入侵和攻击行为,并且能够及时地阻断入侵和攻击行为。我们设计的入侵防御系统将Snort的入侵检测规则转化为Linux内核包过滤防火墙使用的规则,使Netfilter不仅具有防火墙的功能,同时具有入侵检测的功能,从而设计出一种新型的融合式入侵防御系统。
|
| 关 键 词: | 入侵防御 防火墙 入侵检测 Snort规则 规则转换 |
Research and Design of Syncretic Intrusion Prevention System |
| |
| LuXiaoFeng Wang EnboComputer Center,North China University of Technology,Beijing.Research and Design of Syncretic Intrusion Prevention System[J].Net Security Technologies and Application,2005(1):32-34. |
| |
| Authors: | LuXiaoFeng Wang EnboComputer Center North China University of Technology Beijing |
| |
| Affiliation: | LuXiaoFeng Wang EnboComputer Center,North China University of Technology,Beijing 100041 |
| |
| Abstract: | Intrusion Prevention System(IPS) not only can detect malicious behavior ,but also can stop the mali-cious behavior. Our IPS transforms Snort rules into iptables rules which can be used by Linux kernel packetsfilter firewall-Netfilter. So the Netfilter can do packets filter and intrusion detection .Thus we designs a newsyncretic IPS. |
| |
| Keywords: | Intrusion Prevention System Firewall IDS Snort rules Rule transform |
| 本文献已被 CNKI 万方数据 等数据库收录! |
