| With the fast development of the computer network, there are inevitably some potential security problems while the Internet is providing open or shared resources. The security problems of the network have become a focus of attention,also do the security of Intranet especially.The chief approach which can resovle the security problems of the Intranet is the security of host.At present, there comes various security technologies of host, and many of them get abroad application, and Host Firewall and Host Intrusion Detection are the two technologies that are applied most comprehensive, but the two security technologies have defects when they are used alone. The main content we will research in this task is how to utilize these two more security technologies synthetical to build a multilayer and incorporate defense system of host.In this paper, we analyze the Host Firewall and Host Intrusion Detection technology deeply and summarize their advantage and disadvantage. On the basis of this, we put forward the idea that take the cooperative console as the kernel, build an dynamic adaptive security defense system through combining the Host Firewall and Host Intrusion Detection in indirect way, present the model and structure of the system; design and implement the cooperative console, and also give out the design of the Host Firewall and Host Intrusion Detection. In order to improve the reliability, security and the efficiency of the system, we put forward the two-staged correlation analysis model based on the intrusion alert in this paper, build an mutual-act model based on this mode. Finally, we summarize the work in this paper and give the prospect of the research in the future. |
PDF Full Text Request