CAJ | 학술논문

随着网络结构日益复杂，网络攻击手段多样化，传统的防火墙已无法阻止多种类型的网络攻击。基于智能化自学习方式的入侵检测防护系统将防火墙与入侵检测系统集成为一体，符合NDIS接口规范。系统采用智能化自学习的方式来维护“黑名单”特征库，使防火墙具有自适应的特点，能够阻断未知入侵行为。系统具有快速稳定的防护效果，能够实时响应入侵行为，并提供危机预警的反馈机制。
수착망락결구일익복잡，망락공격수단다양화，전통적방화장이무법조지다충류형적망락공격。기우지능화자학습방식적입침검측방호계통장방화장여입침검측계통집성위일체，부합NDIS접구규범。계통채용지능화자학습적방식래유호“흑명단”특정고，사방화장구유자괄응적특점，능구조단미지입침행위。계통구유쾌속은정적방호효과，능구실시향응입침행위，병제공위궤예경적반궤궤제。
With the growth of network structure complexity and the diversity of network attack methods, traditional ifrewalls have been unable to prevent many types of network attack. According to NDIS interface standard, intrusion detection protection system based on intelligent self learning method(IDPS-ISM) is developed, which has the advantages of ifrewall and intrusion detection system(IDS) combined. In order to realize a self-adaptive ifrewall to block unpredictable attack behaviors, method of intelligent self learning is used to maintain the"blacklist"of IDPS-ISM. The actual facts show that IDPS-ISM is fast and stable, and promises great real-time response. Besides, the system also has warning mechanism to against crisis.