摘要
由于TCP/IP协议的开放性,入侵检测网络安全技术备受业界人士的关注。为了研究在未来高速IPv6互联网中的入侵检测技术,通过分析传统入侵检测系统的局限性,论证了在IPv6环境下采用基于协议分析技术的入侵检测系统(ProtocolAnalyzeBasedIntrusionDetectionSystem,PAIDS)的必要性和可行性,并讨论了其基本思想及需要进一步研究的技术内容。研究结果表明:该技术与传统的入侵检测系统(IntrusionDetectionSystem,IDS)相比具有准确率高、系统占用资源低、速率快等优势。
Because of the opening of TCP/IP protocol, intrusion detection technology becomes more and more important in network security field. In this article, the limitation of traditional IDS is analyzed, the necessity and feasibility of Protocol Analyze based IDS (PAIDS) in future IPv6 Internet are demonstrated. The principle and the technology needed farther researching in PAIDS are discussed as well. The thorough study indicates that PAIDS can advance the detection nicety ratio, depress system resource what is used for detection, expedite detection speed etc..
出处
《信息与电子工程》
2006年第4期288-291,共4页
information and electronic engineering
基金
教育部博士点基金资助项目(20050699037)
关键词
入侵检测技术
协议分析
网络安全
intrusion detection techndogy
protocol analyzing
network security