| The intrusion detection system is a system which can analyze real-time data and operational logs stored in the interior journal file generating during interactive process with external networks.It can real-time detect the intrusion events by information features and matching intrusion rules,and make timely response to prevent the intrusion events.The application fields of intrusion detection is very broad,especially in the financial industry with high security protection requirement.Therefore,studying intrusion detection technologies for banking workstations has theoretical research significance and broad application value.Firstly,it introduces current background of network security in bank workstations,and analyzes the requirements of related parties including terminal hosts,network system and network administrator.Secondly,it introduces the classification and related works of intrusion detection systems,and analyzes the advantages and disadvantages of intrusion detection techniques such as misuse detection and anomaly detection,which provide technical support for the application of intrusion detection of bank workstations.Thirdly,based on the security requirement of bank workstation,it designs a hybrid intrusion detection system which combined terminal module and network intrusion detection module.The terminal module monitors the logs in terminals and send the logs to the network intrusion detection module to detect the intrusion events The network intrusion detect module monitors the entire network to detect the network intrusion events.Finally,it tests and verifies feasibility of the designed system by capturing data package and testing the intrusion events on the specified rules.The advantage of the system is the centralized mode: the terminal module just collects logs and the network detect module carries out the intrusion event detection.As a result,the detection on the network would not expose extra pressure on terminals and would not expose negative effect on the business of banks. |
PDF Full Text Request