| 基于Prelude的安全事件数据交换与传输 |
| |
| 引用本文: | 张振宇,殷肖川,蒋文亭. 基于Prelude的安全事件数据交换与传输[J]. 电子工程师, 2006, 32(11): 51-52,58 |
| |
| 作者姓名: | 张振宇 殷肖川 蒋文亭 |
| |
| 作者单位: | 空军工程大学电讯工程学院,陕西省,西安市,710077 |
| |
| 摘 要: | IDMEF(入侵检测消息交换格式)已被广泛地应用到入侵检测领域中,成为最具影响力的建议之一。它采用XML(可扩展置标语言)作为数据交换格式,但在实际应用中,这对事件传输和处理的性能上产生了一定的负面影响,针对此问题,文中采用Prelude框架来有效地解决,并且可以更加容易地使系统在此基础上对数据做进一步操作处理。
|
| 关 键 词: | 入侵检测消息交换格式 安全事件 Prelude框架 Libprelude |
| 收稿时间: | 2006-01-17 |
| 修稿时间: | 2006-01-172006-07-10 |
Security Events Data Exchange and Transfer Based on Prelude |
| |
| ZHANG Zhenyu,YIN Xiaochuan,JIANG Wenting. Security Events Data Exchange and Transfer Based on Prelude[J]. Electronic Engineer, 2006, 32(11): 51-52,58 |
| |
| Authors: | ZHANG Zhenyu YIN Xiaochuan JIANG Wenting |
| |
| Abstract: | The applications of IDMEF(Intrusion Detection Message Exchange Format) have been widely used in intrusion detection field,and is becoming one of the most influential proposals.It adopts XML as data exchanges format.But in practical application,it makes an adverse effect on the transfer and management of event data. Focusing on this problem,this article resolves it effectively with the Prelude framework,and the system would make further data processing more easily. |
| |
| Keywords: | IDMEF security events Prelude framework Libprelude |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
