检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
机构地区:[1]上海理工大学光电信息与计算机工程学院,上海200093
出 处:《计算机工程》2015年第9期168-173,共6页Computer Engineering
基 金:国家自然科学基金资助项目(61202376);上海市教育发展基金会晨光计划基金资助项目(10CG49);上海市教委科研创新基金资助项目(13YZ075)
摘 要:在包含巨大通信量和多种通信协议的网络环境下,隐蔽信道允许进程以危害系统安全的方式传输信息,对安全信息系统构成威胁。为此,提出一种基于聚类分析的隐蔽信道检测算法,根据正常通信数据和隐蔽通信数据聚类的差别判断通信流中是否存在网络存储隐蔽信道。实验结果表明,该算法可根据通信量大小和待检测字段特点灵活调整实现算法,具有较高的实时性和准确率。The huge communication traffic and vast of communication protocol turn to be perfect medium for covert channel. As a kind of communication channel which allows a process to transfer information in a manner that violates the system' s security, the covert channel is becoming a major threat to the secure information systems. A detection algorithm of Network Covert Storage Channel based on Cluster Analysis (NCSCCA) is proposed in this paper to detect covert storage channel,which is widely existed in network. This new method can identify whether a covert storage channel is existed in the communicating, depending on cluster analysis difference between normal and abnormal communication and has a high-speed feature. What' s more, this method has the ability to detect several kinds of covert storage channel. Preliminary experiment results show that the method is real-time and accurate.
关 键 词:聚类分析 网络隐蔽信道 隐蔽信道检测 网络安全 安全检测
分 类 号:TP393[自动化与计算机技术—计算机应用技术]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.3