摘要
入侵检测是计算机安全领域的一个重要技术,也是当前计算机安全理论研究的一个热点,首先介绍分布式入侵检测发展现状,然后引入攻击树来表示入侵,并提出一个基于攻击树的攻击描述语言。并在此基础上建立了基于攻击树的分布式入侵检测系统结构。
With the development of computer technology and the explosion of Internet, computer security becomes more and more important. The concept of attack trees is introduced first. Then based on the attack tree model, an attack specification language is constructed using this language, we define attack template library and build a structure of attack tree-based of distributed intrusion detection system.
出处
《计算机与数字工程》
2007年第2期101-103,116,共4页
Computer & Digital Engineering
关键词
入侵检测
分布式入侵检测系统
攻击树
攻击树描述语言
intrusion detection, distributed IDS, attack tree, attack tree specification language