首页 | 本学科首页   官方微博 | 高级检索  
     

一个分布式协作的大规模网络恶意代码检测系统
引用本文:吴刚,赵旭,董永苹. 一个分布式协作的大规模网络恶意代码检测系统[J]. 大连理工大学学报, 2005, 45(Z1): 166-171
作者姓名:吴刚  赵旭  董永苹
作者单位:哈尔滨工业大学,网络信息中心,黑龙江,哈尔滨,150001
摘    要:恶意代码已在网络中造成了严重的危害,对恶意代码进行有效地防治成了一项必需的研究. 研究了在大规模网络下,通过已知检测和异常发现两个模块,进行分布但自治式的检测,集中式的控制与分析模型. 异常发现模块采用可靠的技术,从网络中发现异常,并提交给分析控制中心;分析后将特征更新到已知检测模块的特征库中,实现将未知变为已知. 建立了系统模型,能够有效地发现新的疫情并及时地控制.

关 键 词:计算机网络  恶意代码  分布式  异常发现
文章编号:1004-5619(2005)04-S14-02
修稿时间:2005-08-22

A distributed cooperative large network malicious code detecting system
WU Gang,ZHAO Xu,DONG Yong-ping. A distributed cooperative large network malicious code detecting system[J]. Journal of Dalian University of Technology, 2005, 45(Z1): 166-171
Authors:WU Gang  ZHAO Xu  DONG Yong-ping
Abstract:The vicious codes have done serious harm to the computer and network systems.It is very necessary to research on protection system in the large network.The authors introduce a distributed broadband network protection system,which is composed of known check module and anomaly find module.The check is distributed and autonomous,but control and analysis are centralized.The anomaly find model uses reliable technology,and analyzes the data coming from the network and discovers the anomaly,commits the anomaly to analysis control center.After analyses,its character is updated to the known check module,that is,unknown anomaly can be changed into the known.The whole system is constructed,and can find epidemic disease effectively and put it out in time.
Keywords:computer network  malicious code  distributed  anomaly find
本文献已被 CNKI 万方数据 等数据库收录!
设为首页 | 免责声明 | 关于勤云 | 加入收藏

Copyright©北京勤云科技发展有限公司  京ICP备09084417号