Research Of The Intrusion Detection System Based On IPv6 Internet

The computer network has already become the important constituent of the modern social life, however, with the development of the hacker technology, the network experts have realized the importance of the network security, and the network security technology has also obtained the rapid development. Network security technology is developing along two aspects. One is the initiative network security technology, which mainly aims at the design of the network protocol itself. At present, IPSec has been used in the IPv6. Another is the passive network security technology, which mainly includes the firewall technology and the intrusion detection technology, and both of technologies have been considerably developed in the network based on the IPv4.The IPv6 has profited from the design merit of the IPv4, and has also fully considered the design flaw of the IPv4.So the IPv6 uses the IPSec especially to make up the secure flaw of the IPv4 in the design. But, the IPSec technology cannot thoroughly safeguard the security of the IPv6 network, so it is necessary for the IPv6 network to research Intrusion Detection technology.This paper focuses on the research of the Network Intrusion Detection System based on the IPv6, which belongs to the passive network security technology. Firstly, the author introduced the technical background knowledge of the IPv6 protocol and the Intrusion Detection System, in detail elaborated the IPv6 foundation protocol and its security technology, and compared IPv6 with and IPv4. Secondly, the author introduced the theory knowledge of the Intrusion Detection System, detailedly elaborated the protocol analysis technology and the pattern matching technology, and produced the NIDS design based on the protocol analysis and the pattern matching. Finally, the author has produced the NIDS design realization under the IPv6 network, and proposed the deployment plan of NIDS under the network protected by the IPSec protocol.The characteristic of this paper lies in the several aspects below.(1) Designed and realized the Network Intrusion Detection System based on the protocol analysis and the pattern matching under the IPv6 network,and designed the system overall frame and the pattern matching algorithm, then produced the detailed realization process of the system.(2) The system realization is based on the Linux Operating System platform, which has used the multi-thread technology of the C language and GTK+ technology based on the Linux platform to enhance the running efficiency of NIDS and the interaction between the user and NIDS.(3) Proposed the deployment plan of NIDS under the network environment with the IPSec. This plan is applying the technology of the screened subnet, which isolates the internal subnet protected and the outside net with a peripheral net, where NIDS is deployed.