摘要
文中按蠕虫发展进程研究各种情况下的特征自动提取系统,在对蠕虫特征自动提取技术进行综述的基础上,指出攻击特征自动提取技术存在的不足与发展趋势,并提出了基于网络的攻击特征自动提取系统框架。该框架具有模块清晰、低耦合、易扩展等特点。
The worm signature automatic generation systems are first serveyed according to the process of worm development, then the existed drawbacks and the development of the attack signature automatic generation technology are pointed out; and finally the architecture of network-based attack signature automatic generation system is proposed, which has such features as clear modules, low coupling and easy extension
出处
《信息安全与通信保密》
2009年第8期254-257,共4页
Information Security and Communications Privacy
关键词
特征自动提取
框架
入侵检测
蠕虫
signature automatic generation
architecture
intrusion detection
worm