摘要
随着互联网的发展,隐藏的安全问题也越来越复杂和严重,然而传统网络安全设备无法抵御现在错综复杂的网络威胁,在实际网络应用方面迫切需求将多种安全功能集中在1台设备中,即研究的核心内容———统一威胁管理平台(UTM)。针对目前UTM产品的不足,通过研究网络处理器技术、模式匹配技术和深度检测技术,提出实现UTM的新方法。基于网络处理器和Linux操作系统,借助功能强大的硬件引擎———模式匹配,完成了UTM系统的设计方案,并阐述了该方法的具体实现步骤,并在SmartBits 6000C平台测试环境和真实网络环境中对UTM进行了测试,测试分析表明本系统具备对多种威胁的识别能力。
With the development of Internet,hidden security issues become increasingly complex and serious.However,the traditional network security devices could not resist the intricate threats on Internet.In practical operation,a variety of security features are demanded to be integrated into a single device,which is the core of this paper-Unified Threat Management(UTM).In terms of the weakness of current UTM,the author studies on NP,Pattern Matching and DPI technologies to achieve the new methods of implementation of UTM.Based on NP,Linux operating systems and one powerful hardware engine,i.e.,IPME,the paper completes the UTM system design and describes the specific steps of implementation.Then,a test is carried out in both SmartBits 6000C platform test environment and real-network test environment,and the results shows that the UTM system embodies a fine performance on the ability to identify a variety of threats.
出处
《电子测量技术》
2011年第5期98-102,共5页
Electronic Measurement Technology
基金
上海市科委开放型项目资助(09511501300)
上海市重点学科建设基金资助项目(S30108)
关键词
统一威胁管理
深度包检测
模式匹配
网络处理器
unified threat management
deep packet inspection
pattern matching
network processor
