| 高速网络入侵检测系统负载均衡策略与算法分析 |
| |
| 引用本文: | 蒋文保,郝双,戴一奇,刘庭华.高速网络入侵检测系统负载均衡策略与算法分析[J].清华大学学报(自然科学版),2006,46(1):106-110. |
| |
| 作者姓名: | 蒋文保 郝双 戴一奇 刘庭华 |
| |
| 作者单位: | 1. 清华大学,计算机科学与技术系,北京,100084;北京信息工程学院,信息系统系,北京,100101
2. 清华大学,计算机科学与技术系,北京,100084 |
| |
| 摘 要: | 为了解决高速网络入侵检测系统(n IDS)的性能瓶颈问题,提出了可用于n IDS的负载均衡策略和算法。在阐述基于多引擎并行处理的n IDS框架的基础上,提出和分析了3种实用的n IDS负载均衡策略,重点论述了一种基于流的动态负载均衡算法——FDLB算法。该算法依据通过动态反馈和预测机制得到的当前引擎负载情况,以一个会话为分配单位,将新的网络数据包分发给当前负载最小的引擎。实验结果表明,在大流量多引擎情况下,FDLB算法的负载均衡效果要比轮转算法好得多。
|
| 关 键 词: | 网络安全 入侵检测 负载均衡 高速网络 |
| 文章编号: | 1000-0054(2006)01-0106-05 |
| 修稿时间: | 2004年10月11 |
Load balancing algorithm for high-speed network intrusion detection systems |
| |
| JIANG Wenbao,HAO Shuang,DAI Yiqi,LIU Tinghua.Load balancing algorithm for high-speed network intrusion detection systems[J].Journal of Tsinghua University(Science and Technology),2006,46(1):106-110. |
| |
| Authors: | JIANG Wenbao HAO Shuang DAI Yiqi LIU Tinghua |
| |
| Abstract: | The performance of high-speed network intrusion detection systems(nIDSs) is improved by load balancing algorithms developed for high-speed nIDSs.Three load balancing policies were analyzed to develop a flow-based dynamic load balancing algorithm based on nIDSs using multiple detection engines.The algorithm divides the data stream according to the current value of each detection engine's load using a dynamic feed and prediction mechanism.The incoming data packets for a new session are forwarded to the engine that currently has the lightest load.Test results show that the algorithm performs better than the Round Robin algorithm,especially when a large number of concurrent detection engines are used in heavy network traffic environments. |
| |
| Keywords: | network security intrusion detection load balancing high-speed network |
| 本文献已被 CNKI 万方数据 等数据库收录! |
|
