摘要
通过将编码技术和事件关联结合,提出并实现了一种泛型安全结构模型.这种模型能够有效融合不同种类安全设备的信息,分析网络安全状态,对入侵做出正确判断和决策,并且能够应用到不同的环境中去,从而降低入侵检测系统的误警,更加有效地提高网络安全整体防御性能.
The article by encoding technology and combined event correlation, proposes and implements a generic security architecture model. This model can be an effective integration of different types of safety equipment for their information, analysis of network security status of the invasion to make the right judgments and decisions, and can be applied to different environment, thereby reducing the intrusion detection system false alarm, and more effective in raising the overall performance of network security defense.
出处
《河南师范大学学报(自然科学版)》
CAS
CSCD
北大核心
2009年第1期50-52,共3页
Journal of Henan Normal University(Natural Science Edition)
关键词
事件关联
关联性
泛型
编码技术
症状空间
event relation
relevance
generic
coding technology
symptoms space