| 基于协议分析的入侵检测技术的研究 |
| |
| 引用本文: | 申自浩,孙江峰,李云全.基于协议分析的入侵检测技术的研究[J].西安航空技术高等专科学校学报,2008,26(3):55-58. |
| |
| 作者姓名: | 申自浩 孙江峰 李云全 |
| |
| 作者单位: | 河南理工大学,计算机科学与技术学院,河南,焦作,454003 |
| |
| 摘 要: | 协议分析技术是在特征模式匹配技术基础之上发展起来的一种新的入侵检测技术。它从网络通信协议特有的规则性出发,不必进行字节的逐个比较,而是直接找到待分析字节的位置,将待分析字节取出,进行分析。基于协议分析的入侵检测系统具有一些显著的特点。文中提出了一种结合协议分析技术的入侵框架模型。研究表明,该模型提高了检测效率,减少了漏报和误报。
|
| 关 键 词: | 模式匹配 协议分析 误用检测 入侵框架模型 |
| 文章编号: | 1008-9233(2008)03-0055-03 |
| 修稿时间: | 2007年7月11日 |
Invasion Detecting Technological Research Based on Protocol Analysis |
| |
| SHEN Zi-hao,SUN Jiang-feng,LI Yun-quan.Invasion Detecting Technological Research Based on Protocol Analysis[J].Journal of Xi'an Aerotechnical College,2008,26(3):55-58. |
| |
| Authors: | SHEN Zi-hao SUN Jiang-feng LI Yun-quan |
| |
| Institution: | (School of Computer Science and Technology, Henan University of Technology, 454003, J iaozuo, Henan, China) |
| |
| Abstract: | Protocol analysis technology is a new invasion detecting technology developed on the property matching, which can operate via rules that network communication and unnecessary execute characters' comparison one after another but directly locate character awaiting, pick out and analyze,. Based on the distinguished merit existed in invasion detecting system of protocol analysis, the essay proposed invasion frame model combining protocol analysis technology. The research reveal that the model improved detecting efficiency and reduced missing report and error message. |
| |
| Keywords: | Model Matching Protocol Analysis Detecting Misuse Invasion Frame Model |
| 本文献已被 维普 万方数据 等数据库收录! |
|
