###

计算机系统应用英文版:2017,26(2):83-87

View/Add Comment 过刊浏览高级检索 HTML

←前一篇 | 后一篇→

码上扫一扫！

下载全文

一种策略分流的入侵防御及恢复系统架构

杨忠明¹, 秦勇², 蔡昭权³

(1.广东科学技术职业学院计算机工程技术学院, 珠海 519090;2.东莞理工大学计算机学院, 东莞 523808;3.惠州学院教育技术中心, 惠州 516007)

Intrusion Prevention and Recovery System Architecture Based on Policy Shunt

YANG Zhong-Ming¹, QIN Yong², CAI Zhao-Quan³

(1.College of Computer Engineering Technical, Guangdong Institute of Science and Technology, Zhuhai 519090, China;2.College of Computer Science, Dongguan University of Technology, Dongguan 523808, China;3.Research Department, Huizhou University, Huizhou 516007, China)

摘要

图/表

参考文献

相似文献

本文已被：浏览 1288次下载 1966次
Received:June 03, 2016 Revised:July 14, 2016

中文摘要: 通过充分利用入侵检测各类产品的安全防护特点，本文设计了一种策略分流的入侵防御及恢复系统架构.采用双NIDS系统作为前端检测模块，通过策略分流，使得双NIDS系统全面覆盖入侵检测的各个协议层，充分发挥两种NIDS系统的检测优势，实现高效的入侵检测.并结合HIDS的主机日志防护机制及关键内容恢复机制，在即便出现入侵破坏数据的情况下，仍可保证系统的关键部位安全.

中文关键词: 入侵检测策略分流入侵恢复 NIDS HIDS

Abstract:By making full use of the security features of intrusion detection products, this paper designs an intrusion prevention and recovery system architecture based on policy shunt. The system uses the double NIDS system as the front-end detection module, making the double NIDS system completely cover the various protocol layers of intrusion detection by policy shunt and gives full play to the advantages of both NIDS detection system to achieve the high-efficiency intrusion detection. In addition, the system combines with the host logs protection mechanisms and the key recovery mechanisms. Therefore, even in the case of intrusion and data destruction, the system can ensure the security of the critical parts in the system.

keywords: intrusion detection policy shunt intrusion recovery NIDS HIDS

文章编号： 中图分类号： 文献标志码：

基金项目:国家自然科学基金项目（61170193）；广东省工业高新技术领域科技计划项目（2013B010401036）；广东省高等学校优秀青年教师培养计划项目（YQ2014187）；广东省自然科学基金项目（s2013010013432）；广东省教育厅科技创新项目（2013KJCX0178）

Author Name	Affiliation
YANG Zhong-Ming	College of Computer Engineering Technical, Guangdong Institute of Science and Technology, Zhuhai 519090, China
QIN Yong	College of Computer Science, Dongguan University of Technology, Dongguan 523808, China
CAI Zhao-Quan	Research Department, Huizhou University, Huizhou 516007, China

Author Name	Affiliation
YANG Zhong-Ming	College of Computer Engineering Technical, Guangdong Institute of Science and Technology, Zhuhai 519090, China
QIN Yong	College of Computer Science, Dongguan University of Technology, Dongguan 523808, China
CAI Zhao-Quan	Research Department, Huizhou University, Huizhou 516007, China

引用文本：
杨忠明,秦勇,蔡昭权.一种策略分流的入侵防御及恢复系统架构.计算机系统应用,2017,26(2):83-87
YANG Zhong-Ming,QIN Yong,CAI Zhao-Quan.Intrusion Prevention and Recovery System Architecture Based on Policy Shunt.COMPUTER SYSTEMS APPLICATIONS,2017,26(2):83-87