摘要
提出了入侵容忍的计算机网络系统结构,实现了局域网中的入侵容忍机制。该机制可以容忍流量攻击,并提高入侵检测准确率以及保证系统结果的正确一致性和可用性。实验分析了入侵检测准确率和系统的可用性,结果表明,入侵容忍机制可以明显提高计算机网络的安全性能。
An architecture of intrusion-tolerant networked system is proposed and some intrusion-tolerance approaches are implemented in the Local Area Networks(LAN). These approaches can be used to tolerate the traffic attacks, increase the intrusion detection accuracy and guarantee the correct consistency of results. The system availability and detection accuracy are also analyzed in the experiments. The results show that the intrusion-tolerant approaches can improve the security of computer networks.
出处
《计算机工程与应用》
CSCD
2012年第16期111-116,共6页
Computer Engineering and Applications
基金
国家自然科学基金项目(No.60774091)
陕西省自然科学基金项目(No.2011JQ8039)
关键词
入侵容忍
网络系统
前端子系统
入侵检测
可信实时计算基
intrusion tolerance
networked system
front-end subsystem
intrusion detection
trusted timely computing base