| With development of network, network security become serious increasingly. It is very pressing to protect our information resource with active steps in network security domain. Today, it's difficult to resist the multiple and changeful intrusions effectively only by the traditional network security devices such as firewall and security router. Although the firewall can deter familiar intrusion means such as protocol implementation hole and address spoofing, it cannot resist intrusions such as Denial of Service and network virus, emerging in endlessly. Especially, actual intrusions come mostly from intranet. But the firewall is incapable for them. It is idealist to avoid completely intrusions and intrusion attempts early in order to take actions to hold back intrusion, repair hole ,or restore the system destroyed. That is just Intrusion Detection System's work. Intrusion detection system, as an active safety precaution technology, detects inter intrusions, external intrusions and user's misuses in good time, even real time, and responds to intrusions when network system is hurting.Based on the research background stated above, my essay is to intend to develop research on network intrusion detection. To guarantee a low packet loss and to increase the detection ability of IDS in high speed network, an improved data collection engine is designed. A distributed and parallel detection model is introduced in this paper then. In the new distributed and parallel model, we want to further increase the performance of the whole system by the co-detection of the multiple nodes in the same communication field.
|
PDF Full Text Request