摘要
在分析大型复杂计算机网络的安全形势基础上,文章阐述了发展主动防护体系的重要性,讨论了其功能需求。提出了一种结合应用异常检测与滥用检测的入侵检测模型(AMIDS),并以其为核心构建了网络安全主动防护体系,研究了其关键技术,最后给出应用实例。
Basing on the research work about the security situation of large-scale,complex computer networks,the im-portance and functional requirement of active defense architecture are discussed in this paper.The AMIDS model in which both anomaly detector and misuse detector are used is presented.Further,authors have developed a network secu-rity active defense architecture using the AMIDS model as a core.At the same time ,other key technologies are dis-cussed.Lastly,an application sample is given.
出处
《计算机工程与应用》
CSCD
北大核心
2002年第12期26-28,共3页
Computer Engineering and Applications
基金
国防预研基金资助项目
教育部高校骨干教师基金资助项目(编号:2000224)
关键词
网络安全
主动防护体系
入侵检测系统
计算机网络
network security,security architecture,active defense,IDS(Intrusion detection system)