| DIDS监视代理间数据融合算法的设计与实现 |
| |
| 引用本文: | 李阿丽,陈艳芳,张福增,李凌云.DIDS监视代理间数据融合算法的设计与实现[J].计算机工程,2008,34(1):142-144. |
| |
| 作者姓名: | 李阿丽 陈艳芳 张福增 李凌云 |
| |
| 作者单位: | 1. 鲁东大学计算机科学与技术学院,烟台,264025
2. 华为技术有限公司,深圳,518129 |
| |
| 摘 要: | 提出并实现用于分布式入侵检测系统中多监视代理之间协同检测的数据融合算法,实验证明该算法可以在0.07 s~1 s之内检测出SYN洪水、Smurf、Land等多种分布式拒绝服务攻击,并及时采取响应措施,阻断攻击者的网络连接。该算法建立在对多数据源的数据分析基础之上,提高了入侵检测的准确性,克服了路由访问控制列表过滤的局限性,可以实现在不影响网络正常运行情况下的实时检测与报警功能。
|
| 关 键 词: | 分布式入侵检测 监视代理 数据融合 |
| 文章编号: | 1000-3428(2008)01-0142-03 |
| 收稿时间: | 2007-02-20 |
| 修稿时间: | 2007年2月20日 |
Design and Realization of Data Fusion Arithmetic Between Monitor Agents in DIDS |
| |
| LI A-li,CHEN Yan-fang,ZHANG Fu-zeng,LI Ling-yun.Design and Realization of Data Fusion Arithmetic Between Monitor Agents in DIDS[J].Computer Engineering,2008,34(1):142-144. |
| |
| Authors: | LI A-li CHEN Yan-fang ZHANG Fu-zeng LI Ling-yun |
| |
| Affiliation: | (1. School of Computer Science and Technology, Ludong University, Yantai 264025; 2. Huawei Technologies Co., Shenzhen 518129) |
| |
| Abstract: | The paper provides and realizes the data fusion arithmetic used among the monitor agents in Distributed Intrusion Detection System (DDIS), then testifies that the arithmetic can detect many distributed denial attacks such as SYN flood, Smurf, Land etc in 0.07 s~1 s and take instant countermeasures to block intrusive connections. Based on the analysis of multi-data of many machines, so the arithmetic advances the exactness of intrusion detection largely, overcomes the localization of the traditional detect method of router access control list, and basically realizes detect and alert function without affecting the normal running of the network. |
| |
| Keywords: | distributed intrusion detection monitor agent data fusion |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《计算机工程》浏览原始摘要信息 |
|
点击此处可从《计算机工程》下载全文 |
