| UNIX系统入侵检测知识库体系结构研究 |
| |
| 引用本文: | 李彬,戴银涛,胡昌振. UNIX系统入侵检测知识库体系结构研究[J]. 网络安全技术与应用, 2003, 0(11): 27-29 |
| |
| 作者姓名: | 李彬 戴银涛 胡昌振 |
| |
| 作者单位: | 北京理工大学 |
| |
| 摘 要: | 针对目前应用在UNIX系统中入侵检测知识库适应能力不足的问题.提出了一种适应于不同系统环境的知识库体系结构。检测规则按相应系统与服务类型以模块化形式存储,通过应用配制文件加载。实现了入侵检测知识库的可扩展性.提高了入侵检测知识库的通用性,并且可以提高检测规则的搜索效率。
|
| 关 键 词: | UNIX系统 入侵检测 知识库 体系结构 |
A Study on Knowledge Base Architecture of IDS in UNIX |
| |
| BaseArchitectureof IDS in UNIXLi Bin Dai Yintao Hu Changzhen. A Study on Knowledge Base Architecture of IDS in UNIX[J]. Net Security Technologies and Application, 2003, 0(11): 27-29 |
| |
| Authors: | BaseArchitectureof IDS in UNIXLi Bin Dai Yintao Hu Changzhen |
| |
| Affiliation: | BaseArchitectureof IDS in UNIXLi Bin Dai Yintao Hu Changzhen |
| |
| Abstract: | Due to the problem of presently IDS knowledge base in UNIX lacking of flexibility, we present an adaptive knowledge base architecture .The detection rules are stored by modules and loaded by configuration files .The architecture can realize the extensibility of knowledge base and enlarge the application areas, what's more, improve the efficient of searching for the according detection rules. |
| |
| Keywords: | UNIX Intrusion Detection Knowledge base architecture |
| 本文献已被 CNKI 万方数据 等数据库收录! |
