| 信息系统内部安全审计机制 |
| |
| 引用本文: | 彭友,王延章.信息系统内部安全审计机制[J].北京交通大学学报(自然科学版),2009,33(2). |
| |
| 作者姓名: | 彭友 王延章 |
| |
| 作者单位: | 大连理工大学,管理学院,大连,116024;大连理工大学,管理学院,大连,116024 |
| |
| 摘 要: | 针对目前大量存在的信息系统内部安全问题,提出了基于安全审计和入侵检测技术的信息系统安全审计平台,并具体给出了其内部工作流程和实现机制.鉴于信息系统内部安全的特点,作者提出了建立系统内部人员的个人诚信信息,并将其作为入侵检测的匹配条件之一.针对入侵检测系统,采用了误用检测技术和异常检测技术相结合的方式,将事后审计数据作为训练数据建立入侵检测模型,最终实现对信息系统内部审计信息的实时处理.
|
| 关 键 词: | 信息安全 内部安全 安全审计系统 入侵检测 个人诚信数据 |
Research About Security Auditing in Information System |
| |
| PENG You,WANG Yanzhang.Research About Security Auditing in Information System[J].JOURNAL OF BEIJING JIAOTONG UNIVERSITY,2009,33(2). |
| |
| Authors: | PENG You WANG Yanzhang |
| |
| Institution: | Department of Management;Dalian University of Technology;Dalian 116024;China |
| |
| Abstract: | For the security problems take place inside information systems,this paper presented an auditing system's configuration,which is based on security auditing,and invading detection system.According to the characters about security problems inside information systems,the method of building the personal credit information about system's inner staff was proposed.It was as the matching condition about invading detection.For the invading detection system,the combination of misuse detecting technique and abnormal d... |
| |
| Keywords: | information security internal security security auditing system intrusion detection personal credit information |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
