摘要
分析了防火墙、入侵检测系统和蜜罐的性能;利用Honeyd虚拟了较大的网络,将被保护的网络隐藏其中;在对轻量级入侵检测系统Snort改进的基础上构建了联动控制中心C IC,对C IC各模块功能进行了描述,在C IC基础上建立了一种网络安全联动防御模型;并对模型实现中的关键技术和策略库中的联动规则进行了分析,通过实验证明该模型能够形成整体联防效应,进一步改善网络安全性能。
The article analyzed the capabilities of firewall, Intrusion Detection System (IDS) and honeypot ; simulated a big network to conceal protected network in it by using Honeyd,established center of interaction control CIC based on the improved light-weight intrusion detect system Snort, described the functions of CIC's modules, established a kind of network security model of interaction defense based on CIC, and analyzed the key techniques of model realization and the interaction rules of strategy database, proved that the model can formed whole interaction defense effect to improve the capability of network security via experiments.
出处
《火力与指挥控制》
CSCD
北大核心
2011年第6期141-143,147,共4页
Fire Control & Command Control
基金
国家重点实验室开放基金资助项目(isn-9-08)