Military Level Intrusion Prevention System Data Communication And Monitoring Technology Research

Now, the intrusion prevention technology is becoming the mainstream for thestudies of network security, one of the foundations of the system is to provide aneffective communication mechanism for the system’s configuration and management,and to monitor dynamically and to display of current network security situation, in orderto respond timely when the monitoring network is being attacked. The improvedcommunications technology is the precondition to the running of the intrusionprevention system. And the real-time, dynamic monitoring and convenient, efficientmanagement is the guarantee of the realization of the system. All of them provideadministrators with convenience to the routine work such as management, maintenance,and monitoring the whole system. However, some intrusion prevention system is nowlargely embedded in the being monitored network, all of data packets which flowthrough the network are detected and filtered, and at the same time, the results of theseoperations will be sent to the system monitoring timely and rapidly for the managementof the system. While the existing design of some inadequate intrusion prevention systemcan not support this real-time interactive response speed, then the system bottleneck willhappens. At the same time, along with the increases of network bandwidth, a variety ofGigabit and even Gigabit networks are using widely, some of the existing intrusionprevention system’s data transmission speed can not meet performance requirements inthe complex intrusion prevention capabilities, this problem not only increased the lagtime, but also reduces the efficiency of the entire network.After analyzing the requirement and specialty of data communications and systemmonitoring integrated with millary high reliability, high-performance intrusionprevention system developed by our laboratory, a based on shared memory datacommunication model based on the OCTEON CN38XX proposed a multi-coreprocessors is presented, and a data communication protocol and reusablecommunication frameworks are also defined.These functions make the system can achieve real-time data communication and dynamic interactive. Design and implementation of the intrusion prevention systemmonitoring subsystem with the C/S architecture, It makes users take effectivemonitoring and management for the entire intrusion prevention system. This hasprovided a guarantee for the system to run stable and reliable.Specifically, the major contributions of the dissertation are listed as follows:1.Presents an architecture based on the OCTEON CN38XX multi-core processorsplatform for millary intrusion prevention system, and describes the topological structure,hierarchical structure and the principles for the realization of all functional modules indetail.2.Defines a data communication protocol and reusable framework forcommunications. By use of the command-driven approach the information systemmonitoring subsystem can parse and process the commands, When you need to add anew command processor, simply components of the communication framework hasbeen generated on the basis of the application.3.Designed and implemented a data communication model based on OCTEONCN38XX multi-core processor platform. The communication model uses sharedmemory communication interface, in the initialization phase the system will allocate alarge named block of shared memory and create multiple buffers in the block. The datapacket processing procedures and data communications transfer the data information byreading and writing the memory node list in the buffers.4.Design and implementation the data communication subsystem and systemmonitoring subsystem of the intrusion prevention system, including the designobjectives, design ideas, the framework and the processing processes and concreterealization of the various functional modules and various subsystems.5.Does a system testing to the data communication subsystem and systemmonitoring subsystem and analyzes these test results. Give the test conclusions at last.To sum up, the thesis makes a detailed design for the data communications systemand system monitoring system of the millary intrusion prevention system, gives thedesign ideas in the design process and achieves these two systems finally. Through thesystem test shows that each system can achieve the desired results, satisfy the needs ofthe whole operation of the system.