本文選題：入侵檢測 + ACBM　； 參考：《天津大學》2014年碩士論文

【摘要】：計算機防御體系防火墻是主要的防御體系，入侵檢測是僅次于防火墻的重要防御技術，在系統(tǒng)遭到入侵時進行實時監(jiān)控與檢測。入侵檢測系統(tǒng)能在電腦遭受攻擊時及時發(fā)現(xiàn)系統(tǒng)受到入侵，接下來馬上使用軟件防止電腦遭受攻擊與入侵；在受到損失的時候及時的向軟件發(fā)出指令，防止不必要的損失。處理完成之后及時的對受到攻擊的類型進行分析，并加入信息庫中，防止下次再遭受同樣的攻擊。網絡的不斷發(fā)展，入侵的技術手法也在不斷的提高中，面對這樣的情況檢測技術也需要有更高的對策來迎接挑戰(zhàn)。 本文以國內外現(xiàn)有的入侵檢測技術為基礎，探究了現(xiàn)在有關網絡的安全問題的現(xiàn)時情況、網絡入侵是如何操作的、為什么要進行安全防護，此外講解了防入侵軟件的功用和如何使用。由于當前的大部分檢測系統(tǒng)都是在Linux下完成的，如Snort。在這里文章作者開發(fā)了源于WinPcap開發(fā)包實現(xiàn)的Windows平臺下的入侵檢測系統(tǒng)，進而開拓了安全產品的使用范疇和用戶群。文章在經過分析比較各種模式匹配算法的基礎上，選擇了性能較高的ACBM算法實現(xiàn)模塊的匹配，，這樣就讓系統(tǒng)具備了很高的效能。 本系統(tǒng)主要是對遼寧石化職業(yè)技術學院的網絡安全系統(tǒng)進行研究設計與維護，確保系統(tǒng)在多人同時訪問的情況下及有大流量的信息下能安全平穩(wěn)的運行，并能有效的防止黑客的入侵。
[Abstract]:Computer defense system firewall is the main defense system, intrusion detection is second only to firewall important defense technology, real-time monitoring and detection is carried out when the system is invaded. Intrusion detection system (IDS) can detect the intrusion in time when the computer is attacked, and then use software to prevent the computer from being attacked and intruded immediately, and send instructions to the software in time of loss to prevent unnecessary loss. After processing is completed, analyze the type of attack in time, and join the information base to prevent the next attack. With the continuous development of the network, the technique of intrusion is improving constantly. In the face of this kind of situation detection technology, we also need to have higher countermeasures to meet the challenge. Based on the existing intrusion detection technology at home and abroad, this paper explores the current situation of network security issues, how network intrusion is operated, and why it should be protected. In addition, it explains the function of anti-intrusion software and how to use it. Most of the current detection systems are implemented under Linux, such as snort. In this paper, the author develops an intrusion detection system based on Windows platform based on WinPcap development kit, and then develops the usage category and user group of security products. On the basis of analyzing and comparing all kinds of pattern matching algorithms, this paper chooses ACBM algorithm with high performance to realize module matching, which makes the system have high efficiency. The main purpose of this system is to design and maintain the network security system of Liaoning Petrochemical Vocational and Technical College, to ensure that the system can run safely and smoothly under the condition of multiple people visiting at the same time and the information with large traffic. And can effectively prevent the invasion of hackers.
【學位授予單位】：天津大學
【學位級別】：碩士
【學位授予年份】：2014
【分類號】：TP393.08

【參考文獻】

相關期刊論文 前5條

1 曾鋮;韓桂華;;基于網絡的入侵檢測系統(tǒng)分析與設計[J];成都信息工程學院學報;2006年S1期

2 王昕陽;;淺析串模式匹配算法KMP及應用[J];電腦學習;2007年02期

3 李昀,李偉華;面向入侵檢測的模式匹配算法研究[J];計算機工程與應用;2003年06期

4 趙杰文;原嬌杰;;數據挖掘中后綴樹算法的應用研究[J];焦作大學學報;2007年03期

5 尤文堅;;利用Winpcap捕獲網絡底層數據包的方法[J];科技資訊;2006年25期

本文編號：1880581