摘要
在网络流量不断增大的情况下,网络入侵检测系统(NIDS)会产生丢包问题。针对这个问题,论文设计了一种基于Agent的NIDS。该系统根据网络流量的大小,可以动态的调整系统中检测Agent的数目,以起到分担网络流量同时又不过多消耗系统资源的作用。实验结果表明,在系统中检测Agent的数目大于1的情况下,各检测Agent分担了整个网络的流量,在一定程度上解决了NIDS的丢包问题。
NIDS has the weakness of losing packets if the network traffic rate is too high. An agent-based NIDS is proposed for this problem. According to the throughput of network, the number of detection agents in the proposed system can be dynamically adjusted, allowing traffic partition over several detection agents as well as consuming system resources at an acceptable level. Experiments indicate that, when the number of detection agent in the system is more than l, every detection agent independently shares the network traffic, this would help solve to a certain extent the problem of packet lossing.
出处
《通信技术》
2008年第8期73-75,共3页
Communications Technology
