基于网络主动防御安全模型的入侵诱骗系统  被引量:6

Study of Intrusion Deception System Based on Network Proactive Defensive Security Model

在线阅读下载全文

作  者:赵洪静[1] 周创明[1] 翟平利 于焕 赵明莉[4] 

机构地区:[1]空军工程大学导弹学院 [2]93861部队 [3]新松机器人自动化股份有限公司 [4]中国人民解放军驻631所军事代表室

出  处:《空军工程大学学报(自然科学版)》2010年第3期76-79,94,共5页Journal of Air Force Engineering University(Natural Science Edition)

基  金:国家自然科学基金资助项目(60773209)

摘  要:当前网络安全形势日益严峻,传统的安全技术如防火墙、入侵检测技术存在着对未知入侵模式的攻击不能有效识别等诸多缺陷,Honeypot技术作为一种网络主动防御的安全技术,也具有一定的局限性。针对以上单一技术在网络安全防御上的缺陷,从主动防御的角度,基于网络主动防御安全模型构建了入侵诱骗系统的体系结构,并且设计了Honeypot与防火墙、IDS的联动系统,既克服了防火墙不能提供实时检测的缺陷,又降低了IDS的漏报率和误报率,弥补了各自的不足,充分发挥了优势,从而提高了网络系统的主动防御能力。同时,给出了有限自动机模型,模拟了入侵诱骗系统的基本功能,为系统的行为描述和结构设计提供了理论依据和论证。The situation of present network security is becoming rigorous day by day,the traditional security technologies such as firewall,intrusion detective system have some kinds of defects,that is,they cannot identify the unknown intrusion pattern effectively,the honeypot technology as a proactive defense method also has its own limitations.As to the defaults of the above every single technology and from the angle of active defense,the paper builds up an Intrusion deception architecture based on network active defensive security model,and simultaneously designs an interface system among the honeypot,firewall and the IDS to overcome the default that the firewall can not perform unreal time detection.This can decrease the false alarm and leaking alarm of IDS,make up the deficiency and unleash the superior of each method,thus,the proactive defense capacity of the network systems is enhanced.The paper also gives out a finite state auto-machine model,simulates the basic functions of the intrusion deception system,which provide a theory and reasoning supplement for the system's action description and architecture design.

关 键 词:主动防御 入侵诱骗 HONEYPOT 虚拟网络服务 有限自动机 

分 类 号:TP393.08[自动化与计算机技术—计算机应用技术]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象