| Intrusion detection is a rising and very important field in network security with high-speed development. It's one of the kernel technology of active network security, it not only can detect the outside intrusion action but also can find out the unauthorized activity inside the network. Intrusion detection takes active security protection policy.With the increasing services put on network, more and more computers are connected to Internet and the traffic on network increase sharply. The bandwidth of old network can not adapt to it and people have higher demand and desire to gain more stable high-speed network. With the development of communication technology, the high-speed network come forth such as Giga Ethernet and FDDI. It can provide gigabits bandwidth. But the application of the high-speed network brings a new challenge to network security.Now most intrusion detection systems based network can not adapt to high-speed network and there are no intrusion detection product can support the gigabit network. So it is urgent to develop a intrusion detection system which can adapt to gigabit networkm, of course, this is a technical difficulty and stress in the intrusion detection field.This paper mainly discuss how to realize a intrusion detection system which can work effectively in Giga Ethernet environment. Based the current intrusion detection technic, we give a model of high-speed intrusion detection system structure and put forward the flow devision policy based the model. In this paper, we also discuss the method to improve the performance of capturing packet on the network. |
PDF Full Text Request