資源描述:
《基于java的局域網(wǎng)網(wǎng)絡(luò)入侵檢測系統(tǒng)的設(shè)計與實(shí)現(xiàn) -大學(xué)畢業(yè)論文.doc》由會員上傳分享���,免費(fèi)在線閱讀,更多相關(guān)內(nèi)容在學(xué)術(shù)論文-天天文庫�。
1、基于代理的入侵檢測系統(tǒng)的實(shí)現(xiàn)摘要入侵檢測系統(tǒng)在如今的網(wǎng)絡(luò)安全領(lǐng)域已經(jīng)成為一個關(guān)鍵性的組件����,但傳統(tǒng)的入侵檢測系統(tǒng)存在的一定的不足,如誤報率和漏報率比較高�����,檢測速度慢�,占用資源多等。為了適應(yīng)網(wǎng)絡(luò)安全的發(fā)展需求�,針對現(xiàn)有的入侵檢測系統(tǒng),結(jié)合移動代理技術(shù)�,提出了基于移動代理的分布式入侵檢測模型。本文首先分析了當(dāng)今網(wǎng)絡(luò)安全的現(xiàn)狀和存在的問題�,指出了傳統(tǒng)的入侵檢測系統(tǒng)的局限性,并闡述了入侵檢測技術(shù)的發(fā)展歷史和研究現(xiàn)狀�����。然后講敘了分布式入侵檢測模型的構(gòu)成,在該模型各個分布節(jié)點(diǎn)上使用Snort抓取網(wǎng)絡(luò)數(shù)據(jù)包�����,并
2��、記錄可疑攻擊數(shù)據(jù)���,通過移動代理技術(shù)對可疑數(shù)據(jù)融合后進(jìn)行綜合分析,完成對分布式入侵的檢測功能�����。該模型在windows環(huán)境下實(shí)現(xiàn)��,采用日本IBM公司的代理移動代理環(huán)境�,結(jié)合Snort入侵檢測系統(tǒng),利用JAVA語言編程��,實(shí)現(xiàn)從可疑數(shù)據(jù)中�,分析出攻擊行為,并自動添加相應(yīng)規(guī)則�,增強(qiáng)對網(wǎng)絡(luò)的保護(hù)能力���。關(guān)鍵字:分布式;移動代理�����;入侵檢測���;Snort�����;代理TheRealizationofIntrusionDetectionSystemBasedonAgentAbstractToday,intrusiondete
3����、ctionsystemhasbecomeakeypartoftheareaofthenetworksecurity,buttherestillhassomedisadvantagesintraditionalintrusiondetectionsystems,suchasthehighfalsepositiverateandthehighfalsenegativerate��,theslowlyspeedofdetection,takingupalotofresourcesandsoon.Inord
4���、ertomeetthedemandsofthenetworksecuredevelopment,thethesisprovidesthemodeofdistributedintrusiondetectionsystembasedonmobileAgenttechnologyaccordingtonowadaysintrusiondetectionsystem.Firstofall,thestatusandexistedproblemsaboutthesecurityofnetworkisanal
5��、yzedinthisthesis,whichpointsoutthelimitationsofthetraditionalintrusiondetectionsystems,andgivesdetaildescriptionsofthedevelopmenthistoryandtheresearchstatusoftheintrusiondetectiontechnology.Second,thethesisdescribesthemodeofthedistributedintrusiondet
6��、ectionsystembasedonmobileAgenttechnology.InthismodeSnortisusedonthedistributednodestograspthenetworkdatapackets,andrecordthesuspiciousdata.ThesystemrealizesthegeneralanalysisonfusedsuspiciousdatacollectedbythemobileAgenttechnology.Thissystemisrealize
7���、dinthewindowsoperationsystem,whichadoptstheAgentmobileAgentbelongedtotheJapaneseIBMcompanyandcombinedwithsnortintrusiondetectionsystem.Thesystemdevelopedinjavalanguageanalyzestheintrusionbehavior,increasestherulesautomatically,andstrengthenstheabilit
8�、yofprotectiontothenetwork.Keywords:distributed;mobileAgent;intrusiondetection;Snort;Agent目錄1引言11.1緒論11.2研究現(xiàn)狀11.3本文主要內(nèi)容22入侵檢測和移動代理技術(shù)22.1入侵檢測技術(shù)22.1.1入侵檢測概述22.1.2入侵檢測的分類32.1.3人侵檢測系統(tǒng)的發(fā)展趨勢42.2移動代理技術(shù)52.2.1移動代理52.2.2移動代理與入侵檢測系統(tǒng)結(jié)合的優(yōu)勢53基于移動代理的分布式的入侵檢測模型53.1傳統(tǒng)
