摘要
本文提出了一种云环境下的网络安全处理模型,模型中的每台云服务器都拥有自己的入侵检测系统,并且所有的服务器共享一个异常管理平台,该平台负责报警信息的接收、处理和日志管理。模型采用报警级别动态调整技术和攻击信息共享方法,最大限度地降低了漏报率和服务器遭受同种攻击的可能性,有效提高了检测效率和系统安全水平。
This paper presents a model for network security processing under a cloud environment, in which every cloud server has its own intrusion detection systems, and all servers share an exception management platform, which is responsible for receiving alarm information, processing and logging management.The model uses alarm level dynamic adjustment technology and attack information sharing approaches, to minimize false negative rate and the likelihood of the server suffered the same kind of attack, effectively improve the detection efficiency and safety.
出处
《网络安全技术与应用》
2014年第9期5-6,共2页
Network Security Technology & Application
基金
2014年安徽财经大学科研项目(ACKY1451)
2014年安徽省自然科学基金项目(1408085MF127)
关键词
云计算
入侵检测
网络安全
Cloud computing
Intrusion detection
Network security
