(北京理工大學光電學院光電成像技術與系統教育部重點實驗室,北京100081)
摘要:隨著高速網絡技術的發展�,網絡入侵檢測系統(Network Intrusion Detection System),簡稱NIDS,正面臨著巨大的挑戰�����。在當今高速網絡環境下���,需要檢測的數據急劇增加��,傳統的NIDS存在嚴重的實時性能瓶頸問題�,這可能導致丟包和錯誤檢測的發生����。本文首先分析傳統的網絡入侵檢測系統�,然后將改善的負載均衡技術引入網絡入侵檢測系統以適用于高速的網絡環境�。
關鍵字:高速網絡����,入侵檢測����,負載均衡
Efficient Intrusion Detection for High-speed Networks
GU Mei-Xia , MA Gao-Long, YUYue
(Key Laboratory of Photo electronic Imaging Technology and System of theMinistry of Education of China,
School ofOptics and Electronics,Beijing Institute of Technology, Beijing 100081,China)
Abstract:With the development of high-speed networks,network intrusion detection system(NIDS) is facing a huge challenge.Due to the dramatical increasing of data need to be detected,the traditional NIDS has a serious problem with handling heavy traffic loads in real-time ,which may result in packets loss and error detection . In this paper we will analyze the traditional NIDS and introduce the improved load balancing scheme into NIDS to make it more suitable to high-speed networks environment.
Key words: high-speed networks;Intrusion Detection; load balancing
參考文獻
[1] T. Garfinkel and M. Rosenblum,“A virtual machine introspec tion based architecture for intrusion detection,”In Network and Distributed Systems Security Symposium, February 2003.
[2] 陸華彪�,并行入侵檢測系統負載均衡研究與實現�����,碩士學位論文 國防科學技術大學�����,2008年
[3] 汪大勇�,改進的模式匹配算法在入侵檢測中的應用 電腦技術與知識���,2010�����,6(4)
[4] 李曙峰�����,防火墻與入侵檢測相結合的網絡安全研究�����,數字通信 �����,2009 36(5)
[5] 李兵��,基于分布式入侵檢測的負載平衡調度算法�,信息技術 ����,2008 年2月
第一作者簡介:
顧美霞(1989-)�,女����,山東人����,碩士研究生�,主要從事全息光學����、光機系統設計等方面的研究��,在體全息光學設計等領域有較深的造詣
