摘要： 结合实际工作经验和研究成果，在分析安全应急响应技术发展动态的基础上，对网络入侵检测、事件隔离与应急恢复、取证、网络陷阱及诱骗等应急响应关键技术进行了分析和研究。构建了一个网络安全应急响应系统，并对系统的工作机制进行了分析。

关键词: 应急响应, 事件隔离, 入侵检测, 取证, 陷阱

Abstract: Based on the analysis of the development trend about computer network security emergency response technologies, this paper researches the emergency response key technologies such as intrusion detection, incident isolation, emergency restore, forensic, networked trap and entrapment technology, and draws relevant conclusion. An emergency response system is designed and its work mechanism is analyzed.

Key words: Emergency response, Incident isolation, Intrusion detection, Forensics, Trap

中图分类号: 

• TP393.08