计算机工程与设计
計算機工程與設計
계산궤공정여설계
COMPUTER ENGINEERING AND DESIGN
2014年
7期
2339-2343
,共5页
入侵检测%分布式系统%计数布隆过滤器%网络安全%快速匹配
入侵檢測%分佈式繫統%計數佈隆過濾器%網絡安全%快速匹配
입침검측%분포식계통%계수포륭과려기%망락안전%쾌속필배
intrusion detection%distributed system%counting bloom filter%network security%fast matching
针对当前入侵检测系统的大量数据快速匹配要求和对攻击类型的适应性问题,设计并实现了采用计数布隆过滤器(CBF)技术的分布式入侵检测系统。介绍了CBF的原理,对基于CBF技术的模式匹配引擎设计方法和整个系统的实现原理进行了说明。采用CBF实现了快速匹配,动态修改CBF的参数和匹配规则,以快速适应新的攻击类型。实验结果表明,该系统性能和适应性得到显著提升。
針對噹前入侵檢測繫統的大量數據快速匹配要求和對攻擊類型的適應性問題,設計併實現瞭採用計數佈隆過濾器(CBF)技術的分佈式入侵檢測繫統。介紹瞭CBF的原理,對基于CBF技術的模式匹配引擎設計方法和整箇繫統的實現原理進行瞭說明。採用CBF實現瞭快速匹配,動態脩改CBF的參數和匹配規則,以快速適應新的攻擊類型。實驗結果錶明,該繫統性能和適應性得到顯著提升。
침대당전입침검측계통적대량수거쾌속필배요구화대공격류형적괄응성문제,설계병실현료채용계수포륭과려기(CBF)기술적분포식입침검측계통。개소료CBF적원리,대기우CBF기술적모식필배인경설계방법화정개계통적실현원리진행료설명。채용CBF실현료쾌속필배,동태수개CBF적삼수화필배규칙,이쾌속괄응신적공격류형。실험결과표명,해계통성능화괄응성득도현저제승。
To dissolve the present deficiencies of fast matching for massive data and adaptability of attack type in intrusion detec-tion system,a distributed intrusion detection systems based on counting bloom filter (CBF)was designed and implemented.Af-ter a brief introduction of the principle of CBF,the design method of the matching engine based on CBF technology and mecha-nism of the whole system were explained.The system leveraged CBF to carry out fast matching,and could modify the parame-ters and matching rules of CBF to suit new attack types quickly.The results of the experiment showed that its performance and adaptability had been improved greatly.
