| 入侵检测系统负载问题的一种解决方案 |
| |
| 引用本文: | 史美林,何浩,董永乐.入侵检测系统负载问题的一种解决方案[J].计算机工程与应用,2001,37(20):48-49,76. |
| |
| 作者姓名: | 史美林 何浩 董永乐 |
| |
| 作者单位: | 清华大学计算机科学与技术系, |
| |
| 摘 要: | 日益突出的网络安全问题促进了入侵检测系统(IDS)的研究。在高负载的情况下,入侵检测系统会出现来不及分析审计数据的现象,从而可能遗漏恶意数据,产生漏报。这个问题严重地影响了IDS的性能和使用范围。文章详细讨论了目前各种IDS在负载方面解决办法的优缺点。文章综合分析各种因素,把关键资源作为评判系统负载的指标,采取分布式的体系结构、动态划分计算量以及最近最少攻击的过滤策略,提出了一种较全面的负载解决方案。并根据IDS的数据特点讨论了该方案的负载平衡算法。
|
| 关 键 词: | 网络安全 入侵检测 负载平衡 |
| 文章编号: | 1002-8331-(2001)20-0048-02 |
A Solution of Load Problem in Intrusion Detection System |
| |
| Shi,Meilin He,Hao Dong Yongle.A Solution of Load Problem in Intrusion Detection System[J].Computer Engineering and Applications,2001,37(20):48-49,76. |
| |
| Authors: | Shi Meilin He Hao Dong Yongle |
| |
| Abstract: | The increasing problem in network security promotes the research of Intrusion Detection System.Under heavy load condition,IDS probably can't keep up with the production of audit data.Thus some malicious data are ignored,it's called false negative.This problem badly affects the performance of IDS.In this paper,we discuss the strong and weak points of current Intrusion Detection Systems in load aspect.We analyze all kinds of factors,then propose a comprehen-sive solution,using distributed architecture,dynamically classifying computation and the filter policy by last least attack.We also discuss load balancing algorithm according to the data characteristic of IDS. |
| |
| Keywords: | Network Security Intrusion Detection Load Balancing |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
