| With the development of computer and network technology,Internet has been applied in a wide range, and the modern LAN in campus has also been nourished and played a more and more important role in modern education field. Meanwhile, the security problem of the modern LAN in campus is coming out. Thus, to secure the modern LAN in campus becomes fairly important. Being an important ingredient of network security system, Research on intrusion Detection is significant both in theory and in practice. However, the current IDS of campus LAN has some questions which are wildly existing, such as poor real-time, poor flexibility and bad scalability.In this paper, the technologies of IDS and mobile agent are analyzed and summarized, combined the features of the modern LAN in campus, and the model framework of Intrusion Detection System based on Mobile Agent(MA-IDS) is put forward, which is suitable for the modern LAN in campus. The paper mainly contributes on the following aspects.1. After the IDS, IDS classification, intrusion detection and relevant standards and development are summarized, the mobile agent, Aglet and Snort are studied in-depth.2. Aim at some problems of the IDS architecture in campus LAN, such as the mass network traffic, not easy of installing and so on, an intrusion detection architecture based on mobile agent is presented. The main components of the architecture are designed, which consists of control system, host system and mobile agent system.3. After introduced the components and the main module of MA-IDS, the realization of the control system, host system and mobile agent are presented in detail. Then, the test of MA-IDS is also given. The test results show that: the system can accurately detect most of the scanning attacks, and its response time is better than traditional SNMP . Deployment of the system to the LAN, it can develop the detection of intrusion for the network, and real-time also increased. |
PDF Full Text Request