摘要
以建立一个实时检测、主动防御网络蠕虫攻击的安全系统为目标,对蠕虫检测与主动防御技术进行了深入的研究,讨论了Aegis模型,探讨了利用snort进行蠕虫误用检测的研究思路和实现方法。仿真实验结果表明,Aegis系统具有良好的自适应性和开放式结构,有效地结合了蠕虫检测与主动防御技术,对蠕虫攻击具有高检测率和低误报率,并能及时有效的防范蠕虫危机。
A real-time detection and a active defense network worm attack safety system are established as a goal, the worm detection and the active defense technology are researched, the Aegis model, research mentality and the realization method on using snort to misuse detection the worm are discussed. The simulation experiment shows the Aegis system have good auto-adapted and the open style structure, effectively unified the worm detection and the active defense technology, had the high detection rate to the worm attack and lowly reporting mistakenly rate, and prompt effectively guard worm crisis.
出处
《计算机工程与设计》
CSCD
北大核心
2008年第22期5735-5737,5747,共4页
Computer Engineering and Design
基金
湖南省高等学校科学研究基金项目(#07C033)