首页 | 本学科首页   官方微博 | 高级检索  
     

Windows下基于主机的安全日志服务器
引用本文:李佳蕾. Windows下基于主机的安全日志服务器[J]. 网络安全技术与应用, 2005, 0(7): 28-30
作者姓名:李佳蕾
作者单位:北京交通大学信息安全体系结构研究中心,北京,100044
摘    要:越来越多的计算机犯罪需要进行电子取证,安全日志服务器在针对电子犯罪的监控、审计以及取证活动中发挥了重要作用。主机日志在电子取证以及入侵检测中有着不可替代的作用,通过深入分析主机日志可以发现系统的异常行为并记录下来作为日后的电子证据或进行实时的入侵检测分析。该文简要介绍了安全日志服务器系统的发展背景,分析了主机日志的构成,主机日志在计算机安全领域中的应用,详述了对主机日志信息的处理并给出了基于主机日志的安全系统的结构搭建。

关 键 词:主机日志  安全日志服务器  电子取证  入侵检测

Safety Log Serve Based on Host Audit Trails
Li Jialei. Safety Log Serve Based on Host Audit Trails[J]. Net Security Technologies and Application, 2005, 0(7): 28-30
Authors:Li Jialei
Abstract:Host audit trails are very important in the field of computer forensic and intrusion detection. From the analysis we can identify host abnormality and we also can store them as electronic evidence for the later lawsuit. Log server based on host audit trails is critical when supervising and auditing the computer crime. This paper describes the background of the safety log server, analyzes the structure of host audit trail, it also elaborates on the process of the log and constructs the safety log server system.
Keywords:Host audit trails  safety log server  computer forensic  Intrusion detection
本文献已被 CNKI 万方数据 等数据库收录!
设为首页 | 免责声明 | 关于勤云 | 加入收藏

Copyright©北京勤云科技发展有限公司  京ICP备09084417号