| Since we entered the21st century, with the popularity of the Internet and the rapid development of information technology, the number of Internet users and the type of network business applications increase continuously, which cause to the rapid proliferation of bad information on the network. Criminals use the Internet to transfer and spread a lot of illegal information. Network security, hacker attacks and other major network security issues have become more and more prominent. To solve these problems, this monitoring technology on the Internet has done a detailed studies and analysis, the main research content and innovation are as follows:1. Analyze and research all kinds of network monitoring techniques and related principles. Demonstrate the principles and characteristics of the pattern-matching technology. Analyze the common pattern matching algorithm in depth.2. For the characteristics of the Internet, combined with the principle of network monitoring, designed internet monitoring model consisting of central control node and child nodes, achieved the Internet monitoring in theory.3. According to the requests of capture character in network monitoring, we proposed and implemented the zero-copy data capture algorithms. Build a signature database to complete the identification of application protocol, and proposed an improved protocol identification BD multi-pattern matching algorithm at the same time, which Solved the network monitoring data capture and protocol analysis and other key issues.4. According to the characteristics of keyword matching, we proposed a dynamic rule sets based on keyword matching algorithm. And for the operation state of the system, we real-time and dynamically adjust the rules to set the active and inactive date, thus improving the efficiency of keyword matching. |
PDF Full Text Request