| Aiming at monitoring and analyzing e-mail in WAN environment, a distributed system is designed to collect, analysis, filter and control on such actions as computer crime, hacker attack, information spy and information intrusion and so on. Accordingly it can examining and supervision of country security and community along with secure problem by detecting, alerting and managing on security status of some network. The system includes soft client server and email monitor center. Soft client server is secretly installed on ISP, WAN, host computer of important and sensitive part needed to be controlled to collect network data. After transmitting in real-time to email monitor center, POP3, information such as SMTP and Web -mail from these data are analyzed , and then the text is analyzed based on key-words matching and orientation analysis to identify it is a suspicious one or not. Meanwhile the center can monitor in real-time on over 1000 nodes by controlling working status and filter condition and software refreshment etc. At present the system has been put into practical use and has a good effete on information control.
|
PDF Full Text Request