摘要
IDS是网络安全主动防御的工具,可以有效地对非法入侵行为进行检测、分析、报警,由于IDS特殊的身份使其成为黑客攻击系统的焦点.从网络结构、协议、检测方法等多个方面研究了现有IDS的局限性,并进一步分析了其局限性引出的安全问题,给出了解决的基本对策,为开发下一代IDS进行了有益的研究和探索,提出了一些解决思路.
IDS is a important tools of passive defense in Network Security field. It can pick up and analyze the information which contains abnormal Network behavior characteristic. So IDS became the Network's attack focus. This paper overview the limits of current IDS from the perspectives of Network architecture, protocol, and detection method aspects. Then discuss the security fragility of IDS, giving some basic solutions aimed for such security fragility. In conclusion some new ideas are given for studying and probing the next generation IDS .
出处
《临沂师范学院学报》
2006年第3期110-113,共4页
Journal of Linyi Teachers' College
