摘要
与传统的防火墙技术和入侵检测技术不同,基于陷阱机制的网络安全体系不仅能够发现网络的入侵行为,而且能通过陷阱网络观察和了解入侵者的攻击行为,并以此来提高入侵检测系统的识别网络入侵的能力。本文较为详细地介绍了基于陷阱机制的网络安全体系结构,并对入侵检测系统的各个模块的功能作了全面的描述。
The network security hierarchy based on trap mechanism is different from the technology of tradition firewall and invading detection, it provides not only finding out the conducts of network invading but also helping us with observing and understanding the conducts by trap network, and improves the capability of Invading Detection System (IDS) to distinguishe the conducts of network invading. The paper introduces the network security hierarchy based on trap mechanism in detail and fully describes the functions of all modules of IDS.
出处
《现代计算机》
2005年第10期56-58,97,共4页
Modern Computer
