| 网络安全协同防卫系统研究与实现 |
| |
| 引用本文: | 安喜锋,李伟华,刘尊.网络安全协同防卫系统研究与实现[J].西安交通大学学报,2008,42(12). |
| |
| 作者姓名: | 安喜锋 李伟华 刘尊 |
| |
| 作者单位: | 西北工业大学计算机学院,710072,西安 |
| |
| 基金项目: | 国家高技术研究发展计划(863计划),西北工业大学校科研和教改项目 |
| |
| 摘 要: | 为了解决防卫体系中各安全模块缺乏协同控制以及不能有效发挥整体效应的问题,提出了一种基于代理的协同控制框架.将各个安全模块关联起来,以实现相互通信和协同工作.在此基础上,构建了包括预警定位、协同安全审计及态势评估、协同事故恢复、网络伪装等功能的网络安全协同防卫系统(NSCDS).以基于机器学习的系统调用序列审计模型为例,对关键技术模块进行了分析和验证,结果表明NSCDS软件在百兆级带宽下,安全审计预警漏报率小于6%,误报率小于8%,各功能模块工作稳定且配合正常,充分显示出系统的综合优势,实现了网络安全多层次、全方位的协同防卫目标.
|
| 关 键 词: | 协同控制 预警定位 安全审计 事故恢复 |
Research and Implementation of Network Security Cooperative Defense System |
| |
| AN Xifeng,LI Weihua,LIU Zun.Research and Implementation of Network Security Cooperative Defense System[J].Journal of Xi'an Jiaotong University,2008,42(12). |
| |
| Authors: | AN Xifeng LI Weihua LIU Zun |
| |
| Abstract: | A novel network security cooperative defense technology is studied and a cooperative control framework based on agent mechanism is proposed to solve the lack of cooperative control and whole effect in traditional defense systems.The technology supports both IPv4 and IPv6 protocols and security modules in the framework are associated with each other to accomplish communication and work together.Furthermore,a network security cooperative defense system is composed and the key functions that support the early-... |
| |
| Keywords: | cooperative control early-alert and orientation security audit accident recovery |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
