摘要
防火墙与入侵检测系统联动,可以有效提升防火墙的机动性和实时反应能力,同时也可增强入侵检测系统的阻断功能,目前已成为一个研究热点。本文从OPSEC和TOPSEC协议出发,对防火墙与入侵检测系统之间联动的技术进行了深入的分析,给出了防火墙与入侵检测系统联动的关键技术,并对如何保障自身安全进行了探讨;提出利用开放接口方式实现双方联动的思想,并针对具体产品给出了具体实现。
The interaction with firewalls and intrusion detection systems can improve the flexibility and reaction capacity of firewalls, and enhance the blocking function of intrusion detection systems. This paper starts at introducing the OPSEC and TOPSEC protocols, and gives a deep analysis on the technologies of interaction, proposes the key technologies to implement the interaction with firewalls and intrusion detection systems. Furthermore,the security proper is also discussed. Finally the implementation of the interaction by using open interfaces is described, and a specific example is given.
出处
《计算机工程与科学》
CSCD
2004年第4期22-26,共5页
Computer Engineering & Science
