| Along with the increasingly development of network technology, particularly with the popularity of Internet, the problem of network security has been focused by more and more people. Traditional static security model can't adapt to new network environment, but dynamic security model, such as PPDR model, can satisfy the present demands of network security, and intrusion detection is the core of PPDR model. Intrusion detection is a kind of proactive safety protection technology, it can monitor and protect against the internal, the external attacks and misuse operations in real-time. And it complement to traditional technologies in computer security. Therefore, it has become a hot in the field of network security research.This thesis analyzed the present situation of network security problem first, pointing out the research and development of intrusion detection system have very important meanings; Then it comparatively analyzed traditional static security modeland dynamic security model -- PPDR; And the thesis intensively studied patternmatch technology based on protocol analysis; Finally, according to common intrusion detection framework, the thesis proposed the architecture of network-based distributed intrusion detection system(NDIDS), and the system has high efficiency, scalability and safety.
|
PDF Full Text Request