摘要
对Ad Hoc网络的路由安全性问题进行了研究,提出了一种分布式网络协作入侵检测模型,该模型建立在路由协议之上,针对不同的路由协议,分析其安全漏洞,总结攻击行为的判定规则,进行本地入侵检测;在此基础上,以多点协作的联合检测机制提高检测的正确率;并从节省网络资源的角度对入侵检测模型进行优化配置.以AODV路由协议为例介绍了该模型的工作机制,利用仿真软件NS2搭建网络仿真平台进行仿真实验,结果表明,该检测模型能更好地保障网络安全.
The issue of routing security in ad hoc network was studied. An intrusion detection model in cooperation with distributed network is proposed for ad hoc networks, based on routing protocols. Analyzing the flaws in security for different routing protocols and summarizing the rules of judging attack behavior, local intrusion detection was conducted. Each host run local IDS, and its detection result would be gathered for such cooperative intrusion detection. In this way, the detection probability increases while the false detection probability decreases. To save the resources of the entire network, an optimized configuration scheme is proposed. The AODV route protocol was taken as example to describe the working mechanism of this model of which the performance was simulated with NS2 ( Network Simulation) software. Simulation results indicated that it can safeguard well the network against intruders and maintain the network performance.
出处
《东北大学学报(自然科学版)》
EI
CAS
CSCD
北大核心
2006年第7期739-742,共4页
Journal of Northeastern University(Natural Science)
基金
国家高技术研究发展计划项目(2002AA784030)
关键词
AD
HOC网络
分布式协作入侵检测
有限状态机
联合检测
优化配置
mobile ad hoc networks
distributed intrusion detection
finite state machine
cooperative detection
optimized configuration