浏览全部资源
扫码关注微信
1. 西安交通大学电子与信息工程学院
2. 西安交通大学电子与信息工程学院 陕西西安710049
纸质出版日期:2003
移动端阅览
[1]张慧敏,钱亦萍,郑庆华,董世杰,管晓宏.集成化网络安全监控平台的研究与实现[J].通信学报,2003(07):155-163.
ZHANG Hui-min, QIAN Yi-ping, ZHENG Qing-hua, et al. Study and implementation of integrated network security monitoring system[J]. 2003, (7): 155-163.
[1]张慧敏,钱亦萍,郑庆华,董世杰,管晓宏.集成化网络安全监控平台的研究与实现[J].通信学报,2003(07):155-163. DOI:
ZHANG Hui-min, QIAN Yi-ping, ZHENG Qing-hua, et al. Study and implementation of integrated network security monitoring system[J]. 2003, (7): 155-163. DOI:
入侵检测系统 (IDS) 意在检测对计算机系统的未授权使用、误用和滥用。针对目前IDS普遍存在的缺乏有效监控平台的情况
我们提出了一种能够支持多种异构Sensor、多源证据关联以及可视化推理判断的集成化网络安全监控平台NSMS
给出了NSMS的体系结构
并就“证据获取”、“证据处理”、“结果可视化报告”三个关键技术进行了详细阐述。本平台已经在集成化网络安全监控及防卫系统Net-Keeper中得到实现和应用
实际应用表明本平台是一个开放、高效和可视化的网络安全实时监控平台。1
The main intention of intrusion detection system (IDS) is to detect the action of unauthorized use
misuse
and all other abuse of computer systems
but it lacks of an effective monitoring console. In this paper
a novel model of integrated network security monitoring system (NSMS) is proposed
not only NSMS can capture different kinds of intrusion events from multiple and distributed heterogeneous Sensors
but also it can correlate these relative proofs
finally it can visualize the reasoning process. In this paper
we present the framework of NSMS
and then discuss some key issues of implementation
which are proof-getting
損roof-correlation and result-visualization respectively. As the kernel of integrated network security and defense system
the prototype of NSMS has already been developed and tested
it is proved to be efficient
open and practical in network security monitoring.
0
浏览量
316
下载量
6
CSCD
关联资源
相关文章
相关作者
相关机构
京公网安备11010802024621