电脑知识与技术
電腦知識與技術
전뇌지식여기술
COMPUTER KNOWLEDGE AND TECHNOLOGY
2009年
21期
5925-5927
,共3页
入侵检测%移动代理%分布式
入侵檢測%移動代理%分佈式
입침검측%이동대리%분포식
intrusion detection%mobile agent%distributed
该文分析了入侵检测系统的基本状况以及移动代理的特点,指出了目前入侵检测系统存在的不足,提出了基于移动代理的分布式入侵检测模型(MADIDS).此入侵检测系统中,引入了移动代理技术,使得入侵检测系统能够跨平台使用;将基于网络和基于主机的检测结合起来,配置了多个检测部件处理;并将所有配置信息存放在数据库中,从而,实现了数据和处理的分离、数据收集、入侵检测和实时响应的分布化.
該文分析瞭入侵檢測繫統的基本狀況以及移動代理的特點,指齣瞭目前入侵檢測繫統存在的不足,提齣瞭基于移動代理的分佈式入侵檢測模型(MADIDS).此入侵檢測繫統中,引入瞭移動代理技術,使得入侵檢測繫統能夠跨平檯使用;將基于網絡和基于主機的檢測結閤起來,配置瞭多箇檢測部件處理;併將所有配置信息存放在數據庫中,從而,實現瞭數據和處理的分離、數據收集、入侵檢測和實時響應的分佈化.
해문분석료입침검측계통적기본상황이급이동대리적특점,지출료목전입침검측계통존재적불족,제출료기우이동대리적분포식입침검측모형(MADIDS).차입침검측계통중,인입료이동대리기술,사득입침검측계통능구과평태사용;장기우망락화기우주궤적검측결합기래,배치료다개검측부건처리;병장소유배치신식존방재수거고중,종이,실현료수거화처리적분리、수거수집、입침검측화실시향응적분포화.
Intrusion Detection System's basic situation and the characteristics of the mobile agent are analyzed. Considering the shortcoming of the current intrusion detection system, a model of a distributed intrusion detection based on mobile agents (MADIDS) is proposed. The MADIDS introduce the mobile agent technology,which make the intrusion detection system can cross-platform use, and will be based on both the network and the host. In addition, the MADIDS Configurate a number of detection agents and every agent focused on the detec-tion of a particular work on the one hand. All the configuration information are stored in the database, thus, which achieve a separation of data and processing, and the distribution of data collection, intrusion detection and real-time response.