摘要
面对日益严重的安全威胁,蜜罐技术为捕获并深入分析黑客行为提供了基础。本文在传统蜜罐和第二代蜜网技术基础上引入重定向机制,提出了一种结合入侵检测技术与蜜罐技术的重定向主动防御模型,并详细论述了重定向机制的实现技术与实现策略,给出了系统部署环境,最后通过实验验证系统设计的有效性。
The technology of the honeypot has offered the foundation for capturing and analyzing in depth hacker's behavior in the face of the serious security threat day by day. This paper introduces the redirection mechanism on the technological foundation of the traditional honeypot and the second generation honeynet, and then proposes an active redirection-based prevention model which combines intrusion detection and honeypot technology. What's more, it discusses the implementation technique and tactics of the redirection mechanism in detail, and brings forward the situation for deploying this system. In the end, this paper validates the systematic design by performing the experiments.
出处
《微计算机信息》
北大核心
2006年第01X期27-29,208,共4页
Control & Automation
基金
国家863高技术研究发展计划基金资助项目"分布式网络监控与预警系统"(2003AA142010)
