摘要
在分析了传统的网络流量重放和文件系统技术的基础上,提出了一种可应用于入侵检测系统的网络流量延时重放模型,设计并实现了基于Linux的高速线性文件系统。实验结果表明,该线性文件系统磁盘顺序读写性能优于其它主流文件系统,在网络流量延时重放的应用下,系统吞吐量较采用ext2文件系统提高3%,在高速大容量的IP分组存取条件下可有效地减少系统开销,具有一定的实用价值。
Based on analyzing traditional network flow replay and file system technology,a network flow delay replay model is presented,which can be applied to intrusion detection system and a high-speed linear file system based on Linux is designed.Test results show that the sequential disk read and write performances of this linear file system is better than other mainstream file systems.Under the application of network flow delay replay,system throughput is improved 3% than the use of ext2 file system.System overhead can be effectively reduced on the condition of high-speed large-capacity IP packet accessing,and the linear file system has a certain practical value.
出处
《计算机工程与设计》
CSCD
北大核心
2010年第24期5161-5164,5186,共5页
Computer Engineering and Design
基金
国家863高技术研究发展计划基金项目(2009AA01Z201
2009AA01Z434)
关键词
入侵检测
高速存储
网络流量重放
文件系统
网络安全
intrusion detection
high-speed storage
network flow replay
file systems
network security