检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
出 处:《计算机工程与应用》2002年第15期241-243,246,共4页Computer Engineering and Applications
摘 要:由于入侵行为存在相关性,单纯依靠其中独立的检测器来准确地发现和阻止入侵行为是非常困难的,同样地在整个网络系统里单纯依靠分布式入侵检测系统来准确地分析、发现和阻止入侵行为也是非常困难的,如何实现分布式入侵检测系统中的各个检测器间的协同以及将入侵检测系统与现有的或将有的安全系统协同工作是一件非常迫切和重要的任务。该文提供了一个新的解决方案,它既可以根据需要,随时实现自动高效地配置相互间具有协同能力的入侵检测器,又可以做到和网络上的其他安全系统之间的协同。从而可以极大地减轻网络管理员的安装配置压力,实现自动、高效、一致地保证整个网络系统安全。With the increasing of co-relation of the intrusion activities,it is difficult for a stand-alone sensor to collect data,analyze them and then response against the intrusion activities,and at the same time ,the stand-alone distributed intrusion detection system(IDS)faces the same thing.How to implement the co-operation between the different sensors in the distributed IDS and the co-operation between the various security systems such as firewall,virus defense system,security OS and even security applications is a more important and critical task in current IDS field.This article pro-vides a new solution for building a highly configurable,effective and consistent distributed IDS with the co-operation between the different sensors in the same IDS and the co-operation with other security systems automatically to meet the increasing security needs,and in return such IDS system will greatly lessen the pressure of network administrators and increase security of the whole network.
关 键 词:协同 分布式入侵检测系统 模型 网络安全 防火墙 计算机网络
分 类 号:TP393.08[自动化与计算机技术—计算机应用技术]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:3.144.206.193
