| The existing system of distributed network security, intrusion detectionsystem and the firewall linkage mechanism can effectively prevent from hackerattacks,but with the attack of network virus and hacker attack,"integration",thenetwork security system existing exposed serious security problems.e.g.intrusiondetection and firewall can defense individual intrusion behavior, however,on theuse of code injection and stack overflow attack but incapable of action.Inaddition,although firewall can effectively prevent some attacks which from theprotocol layer,including cheating,cryptanalysis,denial of service and otherprotocol attack.But,can not meet the protection requirements of content based onsecurity,it cannot prevent the infection of the program or file viruspropagation.While the conventional stand-alone version of anti-virus softwaretechnology is relatively mature, and facing Internet new virus must be updated inevery computer,easy to cause some machines omissions which cannot beupgraded,therefore unable to provide complete protection from networksystem.In view of the above problems, the solution of integrated network securitymachine multiple cooperative anti virus,attack detection and other securitytechnology collaborative intrusion prevention system is proposed,and the analysisperiod of LAIDS/LIDS framework,using random-inspection on the webpage,themessage should be analyzed by layers of data,code injection,to defense bufferoverflow such attacks,to guarantee that the network security.This paper firstintroduces the existing IPS network based on the problems,and then puts forwardLAIDS/LIDS framework to solve the IPS collection and analysis of attackinformation problem.In order to solve the existing problems based on system callIDS, put random detection based on IDS based on LAIDS/LIDS architecture, and then the false alarm problem solving and its application in cooperative intrusiondetection, which is based on cooperative intrusion prevention system randomdetection LAIDS/LIDS framework.. |
PDF Full Text Request