Facing The Inspection System Culture Nets Invasion

Along with the increasingly wide app lications of computer and networktechnology, it is also widely used in cultural field, the ne twork security problems aremore and more im portant, even it has been the key problem for the furtherdevelopment of network serv ice and appl ication. Because new attacks ceaselesslyemerge with the intrusion t echnologies, firewall and othe r passive security m ethodscannot provide protection completely, and cannot detect the real ti me intrusion, so, itis the f atal weakness to firewall facing the ceaselessly emer ging attack techniques.Next, firewall cannot do anything in the face of virus. But, as an important and activesecurity mechanism, Intrusion Detection will reinforce the traditional system securitymechanism. Intrusion detection techniques can help us to detect attacks again stcomputer system by monitoring the behavi or of users, networks, and com putersystems. If we unify the firewall and the intrusion detection technology together, itwill be more useful to help the user to keep safe.The paper firstly introd uced th e co ncept, p rinciple, f unctional ch aracteristics,classification and lim itation of tra ditional f irewall sys tem and in trusion detec tionsystem. Analyzes the process of Linux kernel in detail with the dataset from network,and the principle of work of the firewall frame, Netfilter/iptable, in Linux kernel.Proposes the linkage m odel of firewall and the IDS, and realizes it. Uses the ACalgorithm in pattern matching and improve the performance of it. Make experiment totest the performance of pattern matching algorithm and the expected result is obtained.Tests th e whole system with the d atasets of DARP Adata set in Lincoln lab andanalyzes the performance of it by the experiment.The resu lt shows the patte rn m atching algorithm can advance the speed ofintrusion detection in a certa in extent. The firewall subsy stem can work stab ly, canrevise the dynamic regular storehouse in real time, thus realizes to respond the partialattacks automatically. it can ba sically realizes the request of data security and real tine of culture network.