摘要
针对目前大型企业内部网络的信息安全问题,提出一个完整的基于大规模Intranet的主动式防御系统的设计方案。该主动式防御系统分为陷阱网络层、控制层、应用层3个部分,同时该系统综合蜜网、入侵检测、重定向等多种最新技术,能够实时有效地收集各种网络攻击行为,并通过对已知攻击性网络行为的转移和对未知网络行为的分析,达到保护企业内部网络信息安全的目的。
For solving the problems of the information security of large scale Enterprise networks, an Integrated Proactive Defense System based on large scale Intranet was designed. The System was divided into honeynets layer, control layer and application layer. Some new technologies were also colligated in the System, such as the technology of Honeynet, IDS and Redirection. The System could collect various network-based attacking behaviors effectively and in real time. So, the information of the Intranet could be protected by analyzing the unknown network-based behaviors and redirecting the known network-based attacking behaviors.
出处
《铁路计算机应用》
2007年第12期34-37,共4页
Railway Computer Application
基金
国家自然科学基金(60572137)
湖南省科技计划项目(2006GK3084)