| Because hackers attack the personal network users with higher and higher frequency and by more and more expert means, the security-protection technology, pointing to PC, has become the focus of research field for current network security. As a basic application security technology based on modern communication and information security, firewall is more and more applied in Internet. It is the development direction of present individual security technology to protect PC with various network security technologies.The individual security defense system mentioned in the article is a complex security-protection system which integrates packet filter technology and intrusion detection technology. The researching key point in the paper is the design and realization of the packet filter technology in individual security defense system. In this paper, which takes the course of realization of packet filter subsystem as main thread, author analyzed in-depth all kinds of key technologies in packet filter subsystem that is based on personal computer combining the features of windows 2000 platform technology. Author analyzes and compares the advantages and disadvantages of existing packet filter technologies and designed a packet filter model for PC according to leitmotiv of model design. Then author discusses the operating principle of windows 2000 protocols stacks in detail and analyzed the running mechanism of driver of NDIS, on the basis of which author also explicates how to intercept data packets grounded on NDIS driver. Author describes the principles of the packet verification and show the whole process of the verification. In the part of interface technology, author analyzes how to design interface to realize the intrusion detection and feed back the dynamic policies of content filter subsystem. Last, author test the individual security defense system in a LAN which connect to Internet and give the result of the test. |
PDF Full Text Request