期刊文献+
任意字段
题名或关键词
题名
关键词
文摘
作者
第一作者
机构
刊名
分类号
参考文献
作者简介
基金资助
栏目信息

组合出入口访问控制的防火墙系统研究 被引量:1

Study on Firewall System Combining Ingress and Egress Access Control
在线阅读 下载PDF
导出
摘要 针对军事网络特殊安全需求,提出了一种组合出入口访问控制的网络边界安全防护手段,在抗网络攻击方面,采用包过滤防火墙与基于神经网络和基于协议分析和规则匹配的入侵检测技术相结合的方法,提高入侵检测的准确性;在防信息泄密方面,在出口访问控制中引入身份认证机制及内容审查和过滤机制,可建立更灵活的安全审计和访问控制策略,有效阻截敏感或涉密信息外泄,实现对泄密源的有效跟踪。 To satisfy the special needs of military networks, a protection method combining ingress and egress access control for network edge security is proposed. On the side of dealing with network attacks, a combined mechanism of packets filtering firewall and intrusion detection system based on artificial neural network and rule matching is implemented, to increase the accuracy of intrusion detection. On the side of prohibiting secret leakiness, techniques of identity authentication and contents filtering are integrated into the mechanism of egress access control, so strategies with more flexibility in security auditing and access control can be implemented, the sensitive or secret data can be blocked from leaking out and the source of leakage can be traced effectively.
作者 黄晓波 殷克功 王晓华 贠永刚
机构地区 徐州空军学院基础部
出处 《计算机与数字工程》 2009年第9期102-104,183,共4页 Computer & Digital Engineering
关键词 军事网络 防火墙 入侵检测 身份认证 人工神经网络 内容过滤 military networks, firewall, intrusion detection, identity authentication, artificial neural network, contents filtering
分类号 TP393 [自动化与计算机技术—计算机应用技术]
  • 相关文献

参考文献8

  • 1Teresa F Lunt. A Survey of Intrusion Detection Techniques [J]. Computers & Security, 1993,12(4) .- 405-418.
  • 2Netfilter, Firewall, NAT an packet filter for Linux [EB/OL]. http://www. Netfilter. org/documentation/index. html.
  • 3Snort, the de facto standard for intrusion detection/prevention[EB/OL], http://www, snort, org/.
  • 4SourceForge. net: The libpcap project[EB/OL]. http;//sourceforge, net/projects/libpcap/.
  • 5C. Rigney, S. Willens, A. Rubens, et al. RFC 2865, Remote Authentication Dial In User Service (RADI- US) [EB/OL]. 2000- 6. http..//www, ietf. org/rfc/ rfc2865, txt.
  • 6RFC 2551, Lightweight Directory Access Protocol [EB/OL]. http;//www, ietf. org/rfc/rfc2551, txt.
  • 7R S Boyer, J S Moore. A Fast String Searching Algorithm[J]. Communications of the ACM, 1977,20:762-772.
  • 8贺龙涛,方滨兴,胡铭曾.对BM串匹配算法的一个改进[J].计算机应用,2003,23(3):6-8. 被引量:9

二级参考文献8

  • 1[1]Crochemore M, Rytter W. Text algorithms[M]. Oxford University Press, 1994.
  • 2[2]Berry T, Ravindran S. A Fast String Matching Algorithm and Experimental Results[A]. Proceedings of the Prague Stringology Club Workshop ′99[C], 1999.16-28.
  • 3[3]Knuth DE, Morris Jr JH, Prath VR. Fast pattern matching in strings[J]. SIAM J.Comput., 1977,6(1):323-350.
  • 4[4]Boyer RS, Moore JS. A Fast String Searching Algorithm[J]. Commun. ACM, 1977, 20(10):762-772.
  • 5[5]Hume A, Sunday DM. Fast String Searching[J]. Softw. Pract. Exp., 1991, 21(11):1221-1248.
  • 6[6]Sunday DM. A Very Fast Substring Search Algorithm[J]. Commun. ACM, 1990, 33(8):132-142.
  • 7[7]Cormen TH, Leiserson CE, Rivest RL. Introduction to Algorithms[M]. The MIT Press, 1990.
  • 8[8]Lecroq T. Experimental Results on String-matching Algorithms[J]. Softw. Pract. Exp., 1995, 25(7):727-765.

共引文献8

同被引文献6

引证文献1

二级引证文献2

计算机与数字工程
2009年 第9期

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部