摘要
入侵检测是信息安全保障的关键技术之一。本文简要介绍了入侵检测系统的概况和目前入侵检测系统中采用的两种通用模型:通用入侵检测框架(CIDF)和入侵检测信息交互格式(IDMEF),并在技术上对两者的优势与不足做了分析和比较。
Intrusion detection is one of the critical techniques in information assurance. This paper introduces the general situation of the Intrusion Detection System and two kinds of common model used in Intrusion Detection System. They are Common Intrusion Detection Framework (CIDF) and Intrusion Detection Message Exchange Format (IDMEF), and their advantages and disadvantages are analyzed and compared in technology.
出处
《现代计算机》
2006年第3期86-89,共4页
Modern Computer