摘要
为了监测和控制网络异常流量,提高网络的安全管理能力,提出基于分布式拓扑控制的网络异常流量控制系统设计方法。系统建立在嵌入式软件开发环境基础上,总体构架包括了网络异常流量的采集模块、A/D模块、主控模块、USB口、JTAG口、控制目标板开发等。异常流量检测采用匹配滤波检测方法,设计流量检测的匹配滤波器,采用标准Linux开发工具集进行网络异常流量控制系统的编译器、连接器、调试器等子系统的开发。在内核解压程序控制下将控制程序编译生成可执行代码,实现异常流量控制系统的软件开发和硬件设计。测试结果表明,采用该方法进行网络异常流量控制,能准确识别异常流量,并通过实时检测和调整,实现网络安全管理。
In order to monitor and control the network abnormal traffic, and improve the capability of network security manage- ment, a design method of network abnormal flow control system based on distributed topology control is proposed. The system is established in the embedded software development environment. Its overall framework includes abnormal network flow acquisi- tion module, A/D module, main control module, USB port, JTAG port and target control board. The matched filtering detection method is adopted for abnormal flow detection. The matched filter is designed for traffic detection. The standard Linux develop- ment tools are used to develop the subsystems of the abnormal network traffic control system, such as compiler, connector, de- bugger, etc. The executable code generated with the program compile is controlled by kernel decompression procedures to realize software development and hardware design of the abnormal traffic control system. The test results show that the method for net- work abnormal flow control can accurately identify the abnormal flow, and achieve network security management by means of real- time detection and adjustment.
出处
《现代电子技术》
北大核心
2017年第24期85-87,共3页
Modern Electronics Technique
关键词
网络流量管理
异常流量控制
安全管理
软件开发
network flow management
abnormal flow control
safety management
software development
