摘要
本文介绍了一种安全灵活的入侵检测系统体系结构。通过运用关键主机隐藏技术,使关键主机对于主动探测、被动监听均不可见,提高了系统自身的安全性。同时,通过引入移动代理、限制入侵检测系统各部分之间的通信等机制,增强本体系结构对于拒绝服务攻击的抵抗力。系统通过使用智能移动代理在网络节点上收集处理信息,提高了入侵检测系统的灵活性,减少了网络负载。
This paper presents a secure and flexible intrusion detection system architecture. By using the critical host hiding technology, the key components are invisible to passive sniffing and active network probing. This IDS architecture is resistant to the denial-of-service attacks. This capability is obtained by using the mobile agent technology and by restricting the communications between different types of IDS components. By using intelligent mobile agents, this IDS architecture is more efficient, flexible and can reduce network load, because intelligent mobile agents can collect and analyze information in network nodes.
出处
《计算机工程与科学》
CSCD
2003年第2期31-33,共3页
Computer Engineering & Science
