摘要
由于网络入侵具有没有地域和时间的限制、隐蔽性强、入侵手段更加复杂等特点 ,如何对其进行检测 ,并根据检测结果进行预警 ,以及在遭受打击后的应急响应与灾难恢复 ,就成为目前众多网络安全手段中的核心。本文首先介绍了网络安全研究的现状与发展趋势 ,然后提出了网络安全深度防御与保障体系的体系结构及工作流程 ,并对组成该体系的各子系统的功能与组成进行论述。开展网络安全深度防御与保障体系的研究与实践 ,对于提高网络系统的应急响应能力、缓解网络攻击所造成的危害。
Because network intrusion has the characteristics of no limit with region and time, high concealment, complex intrusion ways and so on, how to detect, warn and respond has become the core of many network security methods and tools.In this paper, the situation and development direction of network security is summarized first. Then, the framework and workflow of the In Depth Defense and Assurance Framework for Network Security(DDAFNS) is presented, and its subsystem functions and construction are discussed. It is very important to study and practise DDAFNS, which can improve the network system response ability to emergency, slow down the damage of network attack, and enhance system counterattack ability
出处
《计算机工程与科学》
CSCD
2002年第6期7-10,共4页
Computer Engineering & Science
基金
国家 8 63计划资助项目 (863 -3 0 1-0 6-0 1)