摘要
本文介绍了VxD技术的原理和应用 ,并对企业网信息安全防护系统的特点、开发设计作了简要的介绍。利用VxD技术 ,通过置网卡于混杂状态 ,实现了直接从网卡上截取进出网络的数据包 ,通过智能拆分、协议分析 ,对每个数据包的源IP地址、目的IP地址、源MAC地址、目的MAC地址、协议类型、源端口和目的端口等信息进行安全规则过滤 ,以实现对网络共享资源的实时监测 。
This paper introduces the principle and the usage of VxD,and the characteristic,development of Information Security Defending System based on Intranet.With the technology of VxD,by putting the Network Interface Card into Promiscuous Mode,we have implemented to read data package directly in or out of network from Network Interface Card,and completed the real time detection on shared resources by security rules packet filter for each packages source IP address,destination IP address,source MAC address,destination MAC address,protocol type,source port,destination port after Intelligent Splitting and Protocol Analyzing,and defended efficiency attacks of network and imitated IP address by giving an alarm through network.
出处
《计算机应用与软件》
CSCD
北大核心
2004年第1期97-99,共3页
Computer Applications and Software
基金
河北省教委基金资助项目 (2 0 0 1 2 33)
关键词
企业网
信息安全防护系统
VXD技术
虚拟设备驱动程序
VxD(Virtual Device Driver) Virtual Machine Manager(VMM) Promiscuous mode IP(Internet Protocol) packet
