摘要
基于NSIS(Next Steps in Signaling)技术设计并实现了安全设备控制信令协议,提出了NSIS框架下的UMTS核心网动态防御系统。系统基于多源安全信息的融合和聚类分析,实时发现攻击,并依照安全策略,利用NSIS安全设备控制协议动态阻止针对核心网的攻击。NSIS信令技术的引入,保障了安全设备联动消息传输的安全性、可靠性,解决了目前动态防御系统联动协议存在的问题。基于UMTS核心网试验平台,测试验证了NSIS动态防御系统的可行性。
The control signaling protocol of secure equipments was designed and implemented based on the NSIS (Next Steps in Signaling) technology, and a NSIS based dynamic defensive system in UMTS core network was proposed. Defensive system was based on multi-source information integration and cluster analysis. The attacks against core network were detected and prevented real time with NSIS control signaling protocol according to security policies. The security linkage information was safely and reliably transmitted,and problems of existed linkage protocols were resolved based on the introduction of NSIS signaling mechanism. The feasibility of NSIS dynamic defensive system was tested and verified based on UMTS core network test platform.
出处
《计算机科学》
CSCD
北大核心
2009年第3期30-33,共4页
Computer Science
基金
国家自然科学基金(60602061)
国家高技术研究发展计划(2006AA01Z413)资助
关键词
UMTS
核心网
安全信息融合
NSIS
实时响应
UMTS, Core network, Security information fusion, Next steps in signalling, Real-time response