摘要
讨论了入侵检测系统的由来、概念和通用检测模型,以及信息安全保障的概念和其体系结构.分析了入侵检测系统的脆弱性和所面临的威胁,在信息安全保障的理论下提出了入侵检测系统的自防御原则和信息源的自防御技术途径.
The origin,concept and general inspect models of IDS are presented in this paper. The concept and system frame of information assurance are discussed. The frangibility of and the intimidation on IDS are analysed. Based on information assurance, the self-defend rules of IDS and the technology approach of self-defend of source information are given.
出处
《武汉理工大学学报(交通科学与工程版)》
2007年第6期1102-1105,共4页
Journal of Wuhan University of Technology(Transportation Science & Engineering)
基金
国家自然科学基金项目(批准号:40751128)
国家民委重点科研项目(批准号:Mzy02004)资助
关键词
防火墙
入侵检测系统
信息安全保障
纵深防御战略
firewall
intrusion detection system
information assurance
defense-in-depth strategy
