摘要
随着企业网络规模的不断扩大,企业内网的重要性日益凸显,但企业内网面临的威胁却层出不穷.目前业内采用的传统安全策略和常规安全防护技术不能够完全识别和防御这些威胁.在企业内网严峻的安全形势下,本文采用了引起业内广泛关注的拟态安全防御思想,提出了适用于企业内网的拟态网络模型,并基于模型实现了企业内网安全防护原型系统.实验结果表明,企业内网安全防护系统能够防御假冒用户、DDOS、网络蠕虫等多种攻击,并可以有效的阻断未知攻击,从而对于企业内网信息安全防护提供有力保障.
Today,enterprise networks enable easy access to information over staff of an organization,and lots of business rely on the health of the enterprise network system. The security of enterprise network is become more and more import. However,tradition network security technologies based on trick recognition fall into the unknown attacks. In this paper,we propose a mimic security defense based enterprise network security model and implement a protosystem. We first combine the mimic security defense with enterprise network security. Results showthat our model and system can efficiently defend common masquerade attacks,DDOS attacks and worm attacks. Finally,our methods successfully improve the security of enterprise networks.
作者
吕志远
陈靓
冯梅
全成斌
赵有健
LV Zhi-yuan;CHEN Liang;FENG Mei;QUAN Cheng-bin;ZHAO You-jian(Department of Computer Science and Technology,Tsinghua University,Beijing 100084,China;Research Institute of Petroleum Exploration & Development,PetroChina,Beijing 100083,China)
出处
《小型微型计算机系统》
CSCD
北大核心
2019年第1期69-76,共8页
Journal of Chinese Computer Systems
基金
国家自然科学基金项目(61472210
61233007)资助
关键词
拟态安全防御
网络安全
企业内网
拟态网络
mimic security defense
network security
enterprise network
mimic network