摘要
传统入侵安全检测系统存在运行终端数据分布不均、多层防御结构发展不成熟等弊端.为解决上述问题,设计计算机网络环境下的入侵安全检测系统.通过在集成检测框架上规划入侵响应模块位置、确定网络客户端与框架结构间连接方式的手段,完成新型系统的硬件运行环境搭建.在此基础上,利用分层安全协议对检测算法、数据库连接状态进行改进,完成新型系统的软件运行环境搭建,实现计算机网络环境下入侵安全检测系统的开发与实践.模拟系统运行环境设计对比实验结果表明,与传统系统相比,应用新型入侵安全检测系统后,在保证运行终端数据均匀分布的基础上,使多层防御结构稳定性提升20%.
The traditional intrusion detection system has the disadvantage of uneven distribution of terminal data and immature development of multi-layer defense structure. To solve these problems, we designed an intrusion detection system under the computer network environment. The hardware running environment of the new system was designed by planning the location of the intrusion response module on the integrated detection framework and the means of determining the connection mode between the network client and the frame structure. On this basis, the layered security protocol was used to improve the detection algorithm and the state of the database connection, to complete the software running environment of the new system, and to realize the development and practice of the intrusion security detection system under the computer network environment. The comparison experiment results of the simulation system operating environment design show that, compared with the traditional system, after the ap- plication of the new intrusion detection system, the stability of the muhilayer defense structure is improved by 20% on the basis of ensuring the uniform distribution of the data of the running terminal.
作者
蔡尊煌
CAI Zun-huang(Fujian Forestry Vocational & Technical College,Nanping 353000,China)
出处
《内蒙古民族大学学报(自然科学版)》
2018年第6期480-484,共5页
Journal of Inner Mongolia Minzu University:Natural Sciences
基金
2014年福建省中青年教师教育科研项目(JA14391)
关键词
计算机网络
入侵检测
集成框架
客户端
分层协议
Computer network
Intrusion detection
Integration framework
Client
Layered
