Research And Realizatin Of Intrusion Detection System In High-speed Network

With the rapid development of network technology and bandwidth,the network security problems in high-speed network have been more and more serious.Based on current technology of hardware and software,traditional intrusion detection systems in high-speed network environment has difficulties to adapt to the overload pressure.It is imperative to apply Intrusion detection technology to high-speed network environment.This article discusses the research in the field of intrusion detection in status of high-speed network,it leads to the importance of the application of load balancing mechanism.Based on the research of load balancing mechanism.This paper analyzes the intrusion detection system's main technical challenges facing high-speed networks and study abroad solutions.It fully describes the existing intrusion detection model and load balancing technologies.We propose a load-balancing mechanism based on normal traffic filtering,and design a load balancing model including traffic filtering model and dynamic load balance model.This model uses a modified k-means clustering algorithm to realize a normal flow filtration module.The algorithm dynamically determines the number of clusters k to reduce the impact of the initial parameters to the clustering results.And it proposes a "minimum normal traffic" in filtration method.It applies weights based on the density to calculate the distance between clusters,strictly controls the division of normal traffic,and make it more practical to apply in intrusion detection system.The model completes load dispatch based on a dynamic hierarchical algorithm.It mainly proposes a load balance algorithm bases on performance indicators and second hash.This strategy has considerably reduced the destruction of the data stream,consuming minimal system while increasing load balancing.Based on the study of the improved intrusion detection model,the design has realized the intrusion detection system in high-speed network.It illustrates the system framework,business process and the design of the core modules in details.According to the design scheme above,this paper finally realizes intrusion detection system in high-speed network,and build a test environment,as well as the core module of the system and the function of the whole system are tested.Through the testing experiment,the system completes the function of the design,verifies the validity and practicability of the design.