摘要
文章设计并实现了一个入侵检测系统———SC-IDS,该系统采用滥用和异常相结合的检测方法,分布式的体系结构,符合P2DR模型。克服了传统系统的缺点,如误警率和漏警率高、可扩展性弱、不能适应大规模网络、不能与其它安全产品协同工作等。在实际应用中取得了良好效果。
This paper establishes and accomplishes the intrusion detection system,SC-IDS.It combines the knowledgebased IDS and anomaly-based IDS into a system,it accords with P2DR model and the distributed framework.h surmounts the shortcoming of traditional ways of detection,for example,high false positive and false negative rate;can't adapt large-scale network;can't cooperate with other security product etc.It gains a good effect after operation.
出处
《计算机工程与应用》
CSCD
北大核心
2005年第35期141-144,共4页
Computer Engineering and Applications
关键词
网络安全
入侵检测
设计
防火墙
防病毒技术
network security,intrusion detection, design,firewall,anti-virus
