Design Of Delaminated Model Of Intrusion Detection System Based On Agent

With the sustaining development of Internet, it has been the indispensable data source of people's life. The initial design of the protocol and structure of Internet, however, makes the problem of web security in need of raveling out as soon as possible. According to comprehensive security strategy, it is necessary to establish an all-around deference system of web security.I put forward a practical web security model according to the dynamic web security model PPDR. In order to achieve the goal of safe service for web, some security techniques, such as secure routing, and soon are adopted in the model, and their theory are discussed.Intrusion detection technology is the key point of this article. On principle, Intrusion detection technology is made up of abnormal detection and musing detection and by the detected content, it includes host detection and network detection. A distributed Intrusion Detection System based on Agent delaminating is constructed in the thesis, system use different mission Agents according to different conditions. This system comprises central console. Agents is divided into two kinds: detection Agent and communication Agent. Detection Agent is the key point of system design and the task of detection is mainly executed by it Except the communication function, communication Agent also can query the exist state of underlayer Agents. Agents in the same layer communicate directly. The communication of Agents in different layers and the communication between an Agent and the central console are fulfilled by communication Agents.The design of analyzing engine is pivotal for Intrusion Detection System. The article focuses on discussing the manner of data collection and exchange.The central console of Instrusion Detection System and correlated branches of other security systems are added into the security master console, constructing a comprehensive deference frame.In order to achieving the communication between Intrusion Detection System and its component, uniform format must be established. Finally, the developmental criterion discussed by CIDF ad IDWG groups, the research difficulty and direction of Intrusion Detection System is summarized.