摘要: 针对现有网络安全产品报警率不高、安全系统反应能力不强的问题,提出一种基于风险意识的动态入侵防御系统模型。风险意识的引入克服了传统入侵检测系统静态规则控制下的“是/不是”判定模式的缺点。借用网管系统实现防火墙与授权端的联动,实现动态规则控制下的风险判定模式。
关键词:
风险意识,
入侵防御系统,
授权端,
网管系统
Abstract: Now the security policy is always static, which is unsuitable for the complicated and changed network. In order to change that, Intrusion Prevention System(IPS) design based on risk-aware is put forward which makes up the defect of the pattern of “yes/no”. The SNMP is used to realize the linkage of the firewall and authorization end. The network is protected in the dynamic aspect.
Key words:
risk-aware,
Intrusion Prevention System(IPS),
authorization end,
network management system
中图分类号:
陈东方;王 华;顾进广;. 基于风险意识的动态入侵防御系统模型[J]. 计算机工程, 2008, 34(21): 132-135.
CHEN Dong-fang; WANG Hua; GU Jin-guang;. Dynamic Intrusion Prevention System Model Based on Risk-aware[J]. Computer Engineering, 2008, 34(21): 132-135.