摘要
蜜罐及蜜网是网络安全领域的研究热点与核心技术,近年来得到了广泛的关注和快速的发展.提出了蜜罐及蜜网技术所面临的挑战.从蜜罐和蜜网的概念及其关键技术等方面对其研究进展进行综述评论.认为系统伪装、体系结构、多源信息融合、攻击分析与特征提取以及计算机取证与法律等问题是目前蜜罐及蜜网研究的关键问题,并讨论了这些问题可能采取的方法.最后对研究的方向进行了展望.
In recent years, there have been extensive studies and rapid progresses in honeypot and honeynet, which is one of the hotspots and key techniques in the network security field. Highlighting the challenging issues and research trends for honeypot and honeynet technologies, Presented in this paper is a survey on the up-to-date development in honeypot and honeynet, including definition and key technologies. It is pointed out that problems such as disguise service, architecture, multi-resource data fusion, attack analysis and legal ramifications are the key problems to the study of honeypot and honeynet. Possible solutions to these problems are also discussed respectively. Finally, some future directions of research are given.
出处
《计算机研究与发展》
EI
CSCD
北大核心
2008年第z1期375-378,共4页
Journal of Computer Research and Development
基金
国家自然科学基金项目(60603062)
湖南省自然科学基金项目(06JJ3035)
湖南省教育厅资助科研项目(07C718)
关键词
蜜罐
蜜网
网络安全
入侵检测
预警
honeypot
honeynet
network security
intrusion detection
early detection
