摘要
针对传统网络仿真工具在网络安全仿真方面的不足,设计了基于蜜罐的网络防御仿真平台,该平台通过设计可扩展的系统结构模型,将蜜罐技术与网络防御仿真系统相结合,对蜜罐系统功能进行扩展、重构,有效解决了传统网络仿真工具在系统网络协议栈仿真能力不足和应用层缺少对攻击行为的响应、部分网络节点依赖实际设备与系统等方面的问题。最后通过设计实验,仿真了不同防御策略下防火墙对SYN Flood攻击的防御行为,验证了防火墙在网络攻击下的安全功能。结果表明平台可提供从安防设备到服务终端完善的虚拟网络防御系统环境。
Pointed at the deficiency of network simulation tools in network security simulation, design of net- work defense simulation platform based on honeypot is essay put forward. The essay could solve problems of defi- ciency in simulating protocol stacks of different operating systems, lack of response in application layer and part of network node relying on real device and system through designing extendable system structure model, combining ho- neypot with network defense simulation system and extending and reforming function modules of honeypot system. At last a experiment is designed to test defense of firewall under different rules and the security function is verified. The result shows that the platform could simulate network security defense system and provide complete virtual net- work environment including both security defense devices and terminals providing certain services.
出处
《科学技术与工程》
北大核心
2012年第26期6675-6682,共8页
Science Technology and Engineering