| With the development of computer network,people become more and more dependent on the Internet,but inevitably exposed their personal information in the network.Cyber criminals are aiming at the enormous benefits of such information.They attacked targets in network space and steal other people's property and privacy information regardless of the risk of jail.How to ensure the security of computer network has become a hot topic in society.As the current situation of network,a system of network attack detection based on communication data analysis is proposed.It can protect our computer network from attacked by others.The principle and mode of common network attack,such as SYN Flood,UDP Flood,ICMP Flood and ARP spoofing attack is been analyzed.The system and functional modules requirements are proposed.The system architecture diagram and working flow chart are given,and the overall design of the system is been described.According to the system requirement and the overall design,the system is been divided into six parts.They are data capture module,message analysis module,attack detection and statistics module,log and alarm module,signature matching module and message processing module.I also give the detailed design to each function module of their working flow and the way to realize.In the system implementation,it use attack frequency,ratio,packet detection to achieve the goal of network attack detection.In the same time,behavioral statistics and user credit is a support to attack detection.After detecting an attack,the system will determine the way to processing data.All the information of attack is record in a specific format and save the packet according to the user settings.The network attack detection system based on communication data analysis can detect the common attacks and privent them in time,which is able to effectively protect the target and reduce the lossed caused by the network threat. |
PDF Full Text Request