With more and more site intruded by hackers, security expert found than only use crypt technology to build a security system is not enough. The Intrusion Detection is a new security technology, apart from tradition security protect technology, such as firewall and data crypt. They watch the computer and network traffic for intrusive and suspicious activities. They not only detect the intrusion from the Extranet hacker, but also the intranet users.After introducing the characteristics of IDS and mobile agent, and analyzing the intrusion detection model, the thesis has designed an intrusion detection system model framework based on mobile agent. The model has good mobility and extensibility because of using the Aglet platform. And the network engine has used the method of protocol analysis and pattern matching, reducing the matching range effectively and raising the speed of detection.In the thesis, two following aspects have been discussed about IDS: firstly, aiming at it's mobility, the network engine, agent, agent platform and security treatment have adopt java language to realize. Secondly, aiming at agents' self-security, the autonomy agents having been unified managed can use individually. The thesis not only authenticates the platform and agent but also utilizes the policy file to authorize the agents.
|