期刊文献+
任意字段
题名或关键词
题名
关键词
文摘
作者
第一作者
机构
刊名
分类号
参考文献
作者简介
基金资助
栏目信息

基于Netflow的网络安全态势感知系统研究 被引量:21

Study of network security situation awareness system based on Netflow
在线阅读 下载PDF
导出
摘要 综述了网络安全态势感知系统的国内外研究现状;介绍了Netflow基本原理及其数据格式;提出了基于Netflow的网络安全态势感知系统结构;重点研究了实现本系统相关的关键技术。经试验表明,该方法合理可行。 The summarization of studying situation in NSSAS all over the world was presented firstly. Basic principles and data formats of Netflow were given. And then the framework of NSSAS based on Netflow was put forward. Key technologies related to building NSSAS prototype were discussed. Test results show that the method is reasonable and feasible.
作者 赖积保 王慧强 金爽
机构地区 哈尔滨工程大学计算机科学与技术学院
出处 《计算机应用研究》 CSCD 北大核心 2007年第8期167-169,172,共4页 Application Research of Computers
基金 高等学校博士学科点专项科研基金项目(20050217007) 国防预研重点资助项目(413150702)
关键词 NETFLOW 网络安全态势感知 采样间隔 负载均衡 Netflow network security situation awareness sampling interval load balance
分类号 TP393.08 [自动化与计算机技术—计算机应用技术]
  • 相关文献

参考文献13

  • 1BASS T,GRUBER D.A glimpse into the future of ID[EB/OL].(1999-09).[2006].http://www.usenix.org/ publications/login/1999-9/features/future.html.
  • 2BASS T.Intrusion detection systems and multi-sensor data fusion:creating cyberspace situational awareness[J].Communications of the ACM,2000,43(4):99-105.
  • 3BATSELL S G,RAO N S,SHANKAR M.Distributed intrusion detection and attack containment for organizational cyber security[EB/OL].[2006].http://www.ioc.ornl.gov/projects/documents/containment.pdf.
  • 4SHIFFLET J.A technique independent fusion model for network intrusion detection[EB/OL].(2005).[2006].http://www.wooster.edu/cs/mcurcsm2005/papers/paper22final.pdf.
  • 5MATHEUS C J,KOKAR M M,BACLAWSKI K.A core ontology for situation awareness[C]//Proc of the 6th International Conference of Information Fusion.Queensland:IEEE Press,2003:545-552.
  • 6LAU S.The spinning cube of potential doom[J].Communications of the ACM,2004,47(6):25-26.
  • 7GATES G,COLLINS M,DUGGAN M,et al.More Netflow tools:for performance and security[C]//Proc of the 18th Large Installation Systems Administration Conference.Atlanta:USENIX,2004:121-132.
  • 8LAKKARAJU K,YURCIK W,LEE A J.NVisionIP:Netflow visua-lizations of system state for security situational awareness[C]//Proc of ACM Workshop on Visualization and Data Mining for Computer Secu-rity.Washington:ACM Press,2004:65-72.
  • 9YIN Xiao-xin,YURCIK W,SLAGELL A.The design of VisFlowConnect-IP:a link analysis system for IP security situational awareness[C]//Proc of the 3rd IEEE International Workshop on Information Assurance.Maryland:IEEE Press,2005:141-153.
  • 10冯毅.中国信息战-我军信息与网络安全的思考[EB/OL].(2005).[2006].http://www.laocanmou.net/Html /2005 6194115-1.html.

二级参考文献6

  • 1Schaelicke L,Slabach T,Moore B,et al.Characterizing the performance of network intrusion detection sensors[A].Proceedings of the Sixth International Symposium on Recent Advances in Intrusion Detection (RAID 2003)[C].Lecture Notes in Computer Science,Springer-Verlag,2003.
  • 2Coit J,Staniford S,McAlerney J.Towards faster string matching for intrusion detection or exceeding the speed of snort[A].Proc DARPA Information Survivability Conference and Exposition (DISCEX Ⅱ '02)[C].Los Alamitos,Calif:IEEE CS Press,2001.367-373.
  • 3Edwards S.Vulnerabilities of Network Intrusion Detection Systems:Realizing and Overcoming the Risks[Z].Toplayer Networks,2002.
  • 4Kruegel C,Valeur F,Vigna G,et al.Stateful intrusion detection for high-speed networks[A].Proceedings of the IEEE Symposium on Security and Privacy[C].Berkeley,CA:IEEE,2002.285-294.
  • 5Asser N.Tantawi,Don Towsley.Optimal static load balancing in distributed computer systems[J].Journal of the ACM,1985,32(2):445-465.
  • 6Keith W R,David D Y.Optimal load balancing and scheduling in a distributed computer system[J].Journal of the ACM,1991,38(3):676-690.

共引文献28

同被引文献186

引证文献21

二级引证文献204

计算机应用研究
2007年 第8期

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部