The Research And Implement Of The Intrusion Prevention System Based On The Advanced AC-BM Algorithm

With the rapid development of the Internet technologies and applications, theInternet has become the most important part of modern society. However，whenpeople are enjoying the convenience of the Internet, they also have to face thevulnerability of the enormous security risks. As a result, the research of thenetwork security theory has to be innovated and improved. Currently, as the twomost widely used network security technology, firewall and intrusion detectionparticularly have their own advantages but also weaknesses. The drawback of thefirewall, which represents the static security technology, is that the firewall needmanual implement and cannot take the initiative track of the intruder. Meanwhile,the intrusion detection, which represents the dynamic technology, is able toproactively detect network vulnerabilities and security holes, and usually can detectrisk behaviors prior to manual detections. In addition, intrusion detection is good atdiscovering the characteristics of dangerous attacks, so as to ensure the attacks andthen take protective measures. With the security holes constantly found, frequentattacks to the network, the rapid expansion of network traffic, the firewall andintrusion detection technology are becoming over-occupied. As a result, theintrusion prevention technology comes into being, which develops on the basis ofintrusion detection technology and has attained more and more attentions. The coreidea of intrusion prevention system design is: accurate detection, that meansprecisely judge the depth of aggressive behaviors, and real-time blocking.Based on the complex environment of campus network and the demand fornetwork security, this paper presents the idea of the combination use of the firewalland intrusion detection technology, which can be the effective complement of eachother and can run interactively in the campus network environmens. According tothis idea, an IPS with intrusion prevent function can be set up. Besides, as tonetwork intrusion detection system based on feature matching, the main work forperformance optimization is the design of efficient pattern matching algorithm,which can improve the detection efficiency. This paper also makes a certain amountof reflection and exploration in this field and presents an improved patternmatching algorithm. In the end, the paper takes the idea of the combination use of the firewall and intrusion detection technology into the campus networkenvironment and conducts a functional test, which proves that this IPS syetem playsa good defense to intercepts and intrusions, shows the effect of accurate detectingand real-time blocking.