摘要
运用轻量级入侵监测系统Snort入侵检测技术,讨论开放源代码功能强大的网络入侵检测系统Snort的报警机制和原理,及运用Unix套接字技术的服务器端接收报警信息的实现方法.讨论在网络安全管理平台中Snort入侵检测技术应用的集成方法和技术,给出在网络通信中采用对称加密,提高网络安全管理平台中入侵检测技术的效率和安全性的办法.
Applying the lightweight intrusion monitoring system Snort intrusion detection system(IDS) technology to the network security management platform(NSMP), the paper discusses the alarm mechanism and the principle of the powerful open-source network IDS Snort, and also discusses the implementation of receiving alarm information on the server by the Unix socket. Discoursing upon the integration methods and the techniques of the Snort on the NSMP, the paper comes up with the solution of improving the efficiency of IDS technology and security on the NSMP by using symmetric encryption.
出处
《北方工业大学学报》
2008年第3期11-14,32,共5页
Journal of North China University of Technology
基金
北京市教委科研基金资助项目(KM200510009005)
