摘要
随着Linux技术的普及,大量的Linux服务器部署在分布式系统中,如何对这些服务器资源进行有效的安全审计成为了当前一大难点。根据Linux服务器的特点,设计与实现了可应用于复杂分布式环境中的安全审计系统。系统采用组件化、模块化的架构和多级部署方式,基于内核级审计和应用级审计实现了对Linux服务器的系统资源、终端访问、文件、数据库和网络等资源的全面审计。同时,系统采用数据挖掘技术对审计信息进行深入分析,实现了对Linux服务器的智能化审计。系统部署于实际的应用中,并且取得了良好的效果。
With the penetration of Linux technology,lots of Linux servers have been deployed in distributed systems. It becomes a big problem to carry out effective security auditing for those server resources at present. We design and implement a security auditing system applicable to complex distributed environments according to the characteristics of Linux servers. Our solution adopts component-based, modular architecture to support multi-layer deployment. Based on the audits at kernel level and application level,our system achieves the comprehensive audit on Linux servers including system resources,terminal accesses,file,database and network resources,etc. Meanwhile, our system uses data mining techniques to thoroughly analyse the audit message,and realises the intelligent auditing on Linux servers. Our system has been deployed in a real system,and shows very good effect.
出处
《计算机应用与软件》
CSCD
北大核心
2014年第5期17-22,75,共7页
Computer Applications and Software
基金
上海市青年科技启明星计划项目(12QA140 1700)
