摘要
分析现有信息安全系统的特点,提出一种新的分布式信息安全系统体系结构.这种体系结构包括行为模型、分布式Agent和基于XML的信息传递、存储、交换3个主要方面.描述了各个方面的具体实现方案,以及各个组件之间的关系.最后分析了DAISS的优势和缺陷,并提出了弥补缺陷的解决方法.经试验,论文实现的DAISS在入侵检测的质量、性能、自身安全性、兼容性等方面都有着比较优良的表现.
At first, the characteristics of information security systems are analyzed. A new distributed information security system architecture is described. Its architecture consists of three aspects as behavioral modal,distributed agent and information, storage, interchange based on XML. The specific implementation of all these layers and the security communication mechanism among all these components are described. At the end, the advantages and disadvantages of DAISS are analyzed and solutions to disadvantages are also presented. As the experiments prove, the implemented DAISS have some advantages in the quality, performance, self-security and compatibility of intrusion detection.
出处
《天津理工大学学报》
2005年第1期73-75,共3页
Journal of Tianjin University of Technology
基金
天津市自然科学基金资助项目(03615011).
