摘要
通过分析当前计算机病毒及反病毒技术的特点,提出了在大型网络环境下实现分布式病毒预警的思想.其核心是通过对网络中报文捕获和协议分析来进行病毒的检测,进而可以对网络中的病毒攻击及其对网络的影响实施监控.描述了病毒预警系统的结构和主要功能,并讨论了其关键实现技术.通过对在天津教育科研骨干网上成功实施该系统的分析,证明了分布式病毒预警系统对于提高大型网络的网络安全管理水平是十分有效的.
Based on the analyses of the features of current computer virus and anti-virus techniques,an idea of distributed computer virus alert system in the large-scale network is proposed in this paper,that is detecting computer virus in the network by packet capturing and protocol analyses,then monitoring the virus attack and its influence.The successful solution of distributed computer virus alert system to Tianjin education and research network is presented,and it is shown that this system can improve the network security management of a large-scale network.
出处
《大连理工大学学报》
EI
CAS
CSCD
北大核心
2005年第z1期113-117,共5页
Journal of Dalian University of Technology
基金
天津市信息港工程资助项目(02060041003)