| Snort规则及规则处理模块分析 |
| |
| 引用本文: | 张悦连,郭文东.Snort规则及规则处理模块分析[J].河北科技大学学报,2003,24(4):44-47. |
| |
| 作者姓名: | 张悦连 郭文东 |
| |
| 作者单位: | 河北科技大学经济管理学院,河北石家庄,050018 |
| |
| 基金项目: | 河北省教育厅基金资助项目(200234) |
| |
| 摘 要: | 当前,入侵检测已成为网络安全技术的重要组成部分,开放源代码入侵检测系统Snort是研究入侵检测系统很好的原型。分析了Snort规则语法和规则处理模块,剖析了规则语法树的生成及根据规则语法树进行遍历、查找匹配项的过程,总结了Snort的一些特点。
|
| 关 键 词: | 入侵检测 Snort 规则 |
| 文章编号: | 1008-1542(2003)04-0044-04 |
| 修稿时间: | 2003年6月23日 |
Analysis of the Rule of Snort and the Module of Snort Rule Process |
| |
| ZHANG Yue-lian,GUO Wen-dong.Analysis of the Rule of Snort and the Module of Snort Rule Process[J].Journal of Hebei University of Science and Technology,2003,24(4):44-47. |
| |
| Authors: | ZHANG Yue-lian GUO Wen-dong |
| |
| Abstract: | Intrusion detect has been an important composition of the network security technology.Snort,an intrusion detect system(IDS) which opens the source code,is a good prototype to research IDS.The paper analyses the rule syntax and the module of rule process on Snort,expatiates the creation of rule syntax tree and the process of looking for matched option based on the rule syntax tree,and summarizes some characteristics on Snort. |
| |
| Keywords: | intrusion detect Snort rule |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
