Investigation Of Network Intrusion Detection System Based On IPv6 Protocol

With the continual opening for Internet and the rapid development of the network technology, it has become increasingly serious to fight against network intrusion. The network security, as a hot issue today, has been attached importance to by people gradually. Though a variety of traditional static security defending system, such as firewall, identification and data encryption are much consummate, they can't completely solve all problems in the field of the Network Security. So there comes the Intrusion Detection Technology. The IDS is used for intrusion action. By collecting and analyzing the information of key position on network or system, it can find the actions of violating policy and detecting the traces of being attacked from network or system. It has been another defending line behind firewall. So, it is very important to develop an effective and real time network intrusion detection system in the environment of next generation IPv6 protocols Internet.In this paper, the author studies the structure characters of IPv6 protocols in next generation Internet, Compare the differences between IPv4 and IPv6 protocols. Research the process of protocol demodulation based on the analyzing of IPv6 packet header structure, address, spread header and safety mechanism. Design a new network intrusion detection system framework based on protocol analysis technology. The unreasonable codes, malice codes and incomplete data packet can be detected from the collected data packets in IPv6 networks by protocol demodulation and analyses, then the characters and rules of network intrusion can be found and send to action output part to give and process the alarms. Present a detailed designing scheme and implementation method of the network intrusion detection system based on protocol analysis in the environment of IPv6 network.Finally, the author founts the whole frame of NIDS based on IPv6 protocol. The whole system frame is divided into six parts: network packet capture module, network protocol analysis module, rules disposal module, analysis and detection module, storage module and response module. The author designs the technology of getting the network data and the...