| 网络安全监测 |
| |
| 引用本文: | 张亮.网络安全监测[J].重庆大学学报(自然科学版),2002,25(6):152-154. |
| |
| 作者姓名: | 张亮 |
| |
| 作者单位: | 江苏警官学院 南京210012 |
| |
| 摘 要: | “网络安全监测”通过实时分析网上数据流来监测非法入侵活动,并根据监测结果实时报警、响应,达到主动发现入侵活动、确保网络安全目的。系统由嗅探器、监测中心、远程管理服务器等构成,采用基于模式、基于统计2种方法发现入侵。方案技术的关键是入侵识别,解决的主要难点是数据流实时性与查询速度矛盾、入侵模式动态添加等问题,具有漏洞自检、智能分析、双向监测等功能。它是传统网络安全产品的强有力助手、是对付越演越烈的网络入侵的重要工具。
|
| 关 键 词: | 嗅探器 入侵识别 监测报警 网络安全 |
| 文章编号: | 1000-582X(2002)06-0152-03 |
| 修稿时间: | 2002年3月1日 |
Network Security Monitor |
| |
| ZHANG,Liang.Network Security Monitor[J].Journal of Chongqing University(Natural Science Edition),2002,25(6):152-154. |
| |
| Authors: | ZHANG Liang |
| |
| Abstract: | Illegal traffics on network can be actively detected by network security monitor An advanced system is given which can capture network data stream and intercept malicious attack, so as to alarm or take response action in real-time. The system is composed by sniffer, monitor control center, remote management unit,etc. Attack activities under surveillance can be distinguished by two methods,which are rule based method and statistics based method. Intrusion recognition by sniffer is the key technology of the system. In addition, dilemma between real-time data stream and high inquiry speed, as well as dynamic addition of attack rules contributes to the main concern of system design. Backdoor of The system can be self detected, while intelligent analysis and bi-directional surveillance ability has also been implemented. With all these advance features, the system is presented not only as a strong assistant to traditional network security products, but also an important tool for counter-fighting with rampant network intrusion nowadays. |
| |
| Keywords: | sniffer intrusion recognition monitor alarm network security |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《重庆大学学报(自然科学版)》浏览原始摘要信息 |
| 点击此处可从《重庆大学学报(自然科学版)》下载免费的PDF全文 |
