| 基于系统调用的入侵检测传感器研究与实现 |
| |
| 引用本文: | 包剑. 基于系统调用的入侵检测传感器研究与实现[J]. 信息技术, 2004, 28(12): 70-71,88 |
| |
| 作者姓名: | 包剑 |
| |
| 作者单位: | 辽宁工程技术大学电子与信息工程系,阜新,123000 |
| |
| 摘 要: | Linux操作系统调用信息对于描述主机系统的安全状态有重要的作用,分析了Linux操作系统调用信息在入侵检测中的应用;阐述了入侵检测系统Host Keeper中系统调用传感器的原形框架、软件设计和实现方法;并给出了利用Linux操作系统调用信息进行入侵检测的研究。
|
| 关 键 词: | Linux系统调用 入侵检测 网络安全 异常检测 |
| 文章编号: | 1009-2552(2004)12-0070-02 |
Sensor implementation of host intrusion detection system based on system call |
| |
| BAO Jian. Sensor implementation of host intrusion detection system based on system call[J]. Information Technology, 2004, 28(12): 70-71,88 |
| |
| Authors: | BAO Jian |
| |
| Abstract: | The information of Linux system call plays an important role in describing the security state of computer system. There are more and more attentions put in this research area. This paper analyzes the utility of system call information in intrusion detection, discusses the prototype architecture, software design and realizing method of system call sensor in intrusion detection system Host Keeper, and gives the experiment result of Host Keeper in intrusion detection. |
| |
| Keywords: | Linux system call intrusion detection network security abnormity detection |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
