期刊文献+

基于蜜罐的网络防御仿真平台设计 被引量:1

Design of Network Defense Simulation Platform Based on Honeypot
下载PDF
导出
摘要 针对传统网络仿真工具在网络安全仿真方面的不足,设计了基于蜜罐的网络防御仿真平台,该平台通过设计可扩展的系统结构模型,将蜜罐技术与网络防御仿真系统相结合,对蜜罐系统功能进行扩展、重构,有效解决了传统网络仿真工具在系统网络协议栈仿真能力不足和应用层缺少对攻击行为的响应、部分网络节点依赖实际设备与系统等方面的问题。最后通过设计实验,仿真了不同防御策略下防火墙对SYN Flood攻击的防御行为,验证了防火墙在网络攻击下的安全功能。结果表明平台可提供从安防设备到服务终端完善的虚拟网络防御系统环境。 Pointed at the deficiency of network simulation tools in network security simulation, design of net- work defense simulation platform based on honeypot is essay put forward. The essay could solve problems of defi- ciency in simulating protocol stacks of different operating systems, lack of response in application layer and part of network node relying on real device and system through designing extendable system structure model, combining ho- neypot with network defense simulation system and extending and reforming function modules of honeypot system. At last a experiment is designed to test defense of firewall under different rules and the security function is verified. The result shows that the platform could simulate network security defense system and provide complete virtual net- work environment including both security defense devices and terminals providing certain services.
出处 《科学技术与工程》 北大核心 2012年第26期6675-6682,共8页 Science Technology and Engineering
关键词 网络安全 蜜罐 网络仿真 网络防御 HONEYD network security Honeypot network simulation network defense Honeyd
  • 相关文献

参考文献6

  • 1张明清,谢杰,张敏,张星磊.基于OPNET的拒绝服务攻击建模与仿真[J].系统仿真学报,2008,20(10):2736-2739. 被引量:10
  • 2孔红山,唐俊,张明清.基于SITL的网络攻防仿真平台的设计与实现[J].计算机应用研究,2011,28(7):2715-2718. 被引量:13
  • 3Razak S, Zhou Mian, Lang S D. Network intrusion simulation using OPNET. Proc of the OPNET WORKS Symposium and Conference, Washington DC : OPNET Technologies, 2002.
  • 4Provos N, Thorsten H. virtual honeypots: from botnet tracking to in- trusion detection. Addison Wesley Professional,2007.
  • 5Honeyd-Network Rhapsody for You. http://www, clti. umich, edu/u/ provos/honeyd/.
  • 6Honeyd Downloads and Realeases. http://www, honeyd, org/re- lease, php.

二级参考文献15

  • 1荆涛,周庆国,武文忠.基于SSFNet的网络蠕虫实验床[J].通信学报,2005,26(B01):149-152. 被引量:1
  • 2李笑歌,宇伟,高尚伟.基于OPNET软件的数据网络建模与仿真研究[J].系统仿真学报,2006,18(9):2653-2656. 被引量:19
  • 3BJORLIN M. A study of modeling and simulation for computer and network security [ R ]. Stockholm : University of Stockholm / Royal Institute of Technology, 2005.
  • 4RAZAK S, ZHOU Mian, LANG S D. Network intrusion simulation using OPNET[ C ]//Proc of the OPNETWORKS Symposium and Conference. Washington DC : OPNET Technologies, 2002.
  • 5KONG Hong-shan, ZHANG Ming-qing, TANG Jun. The research of simulation for network security based on system dynamics [ C ]//Proc of the 5tb International Conference on Information Assurance and Security. Xi' an : Conference Publishing Services, 2009 : 145-148.
  • 6宋振锋.SYN攻击原理以及防范技术[EB/OL].2005.http://www.yesky.com/324/1764824.shtml.
  • 7OPNET online documentation 10.0.C [R]. USA: oPNET Technologies, Inc. Washington DC, 2004.
  • 8Mattisa Bjorlin. A study of Modeling and Simulation for computer and network security [D]. Sweden: University of Stockholm/Royal Institute of Technology, July 2005.
  • 9Christoph L Schuba, Ivan V Krsul, Markus G.Kuhn, Eugene H Spafford. Analysis of a Denial of Service Attack on TCP [D]//USA: Department of Computer Sciences Purdue University.
  • 10J M D Hill, Scott Lathrop, J R Surdu. Modeling Network Attacks [C]// 12th Conference on Behavior Representation in Modeling and Simulation, Scottsdale, Arizona. May 2003. USA: 2003.

共引文献18

同被引文献8

引证文献1

二级引证文献1

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部