摘要
入侵检测是网络安全技术的一个重要方面。文章针对企事业单位内部网络安全的特点,分别引入了分层次过滤、分布处理、分层管理、自治代理以及安全通讯的思想,提出了基于分布自治代理的层次入侵检测系统模型,并给出了该入侵检测系统的体系结构与详细设计。该入侵检测系统具有实时检测、实时响应、及时恢复、健壮性好、可伸缩性好等优点。
: Intrusion Detection(ID)is an important aspect in network security technology.As to enterprises' Intranet,the approaches of layered filtration,distributed processing,hierachical management,security communication and autonomous agent are adopted to our architecture to put forward a Hierachical Intrusion Detection System Based on Distributed Autonomous Agents,and the architecture and the detailed design of the IDS are presented.The IDS has the desirable characteristics of real-time detection,real-time response,in-time recovery,robustness and scalability and so on.
出处
《计算机工程与应用》
CSCD
北大核心
2001年第6期47-49,76,共4页
Computer Engineering and Applications
关键词
入侵检测系统
自治代理
网络安全
计算机网络
: Intrusion Detection,Intrusion Detection Systems,Autonomous Agent,Network Security