摘要
在计算机网络日益发展的今天,网络上的信息传播正在逐步取代传统媒体,因而计算机网络上的安全问题也越来越受到人们的重视。针对当前大流量网络的普及和多核处理器的广泛应用,提出并实现一种高效的网络数据包重组还原平台。该平台完全工作在用户空间,主要对以旁路监听方式下在网络链路捕获到的网络数据包进行重组及协议还原。扼要地介绍协议还原所涉及到的数据包捕获、数据包重组以及应用层协议还原等关键技术。实验证明,该平台能够高效地将网络数据流还原到TCP层,并可根据需要加入多种应用层协议还原模块,具有很好的可扩展性。
With the increasing development of computer network, dissemination of information on Internet is gradually replacing the tradi- tional media. Therefore, the security issue in Internet is attracting more and more attentions. In view of the popularisation of large flow net- works and the extensive application of multi-core processor, in this paper we present and implement an effective reconstruction and restoration platform for network data packets, which is completely worked in user space. The platform mainly restructures the network data packets cap- tured in internet link on bypass monitoring mode and restores the protocols. This paper briefly introduces some key technologies related to pro- tocol restoration such as the packet capture, packet reconstruction as well as application layer protocol restoration, etc. Experiment indicates that this platform can efficiently restore the network data flow to TCP layer. Also, this platform may add a variety of application layer protocols restore modules according to the need, and has good scalability.
出处
《计算机应用与软件》
CSCD
北大核心
2013年第1期253-255,266,共4页
Computer Applications and Software
关键词
网络安全
数据包重组
协议还原
可扩展性
Network security Packet reconstruction Protocol restoration Scalability
