本文選題：校園網(wǎng) + 網(wǎng)絡(luò)安全��； 參考：《蘭州理工大學(xué)》2017年碩士論文

【摘要】：隨著計算機(jī)技術(shù)、網(wǎng)絡(luò)技術(shù)的飛速發(fā)展,為各個行業(yè)帶來了巨大變化,這其中就包括高校中網(wǎng)絡(luò)信息化的運用,豐富的網(wǎng)絡(luò)資源、應(yīng)用服務(wù)為師生提供了良好的工作、學(xué)習(xí)和生活環(huán)境,有力推動了高校的教育教學(xué)、日常管理等方面的改革和發(fā)展。如何設(shè)計并建立一個安全、可靠、高校的網(wǎng)絡(luò),減少計算機(jī)病毒的侵害、黑客的攻擊、數(shù)據(jù)的篡改等方面的網(wǎng)絡(luò)安全隱患,是各高校當(dāng)前及今后急需解決的。論文首先通過國內(nèi)外網(wǎng)絡(luò)安全現(xiàn)狀,分析了當(dāng)前高校校園網(wǎng)普遍面臨的安全威脅及其來源,指出了構(gòu)建安全的校園計算機(jī)網(wǎng)絡(luò)需要解決的關(guān)鍵問題;其次介紹了校園網(wǎng)常用的網(wǎng)絡(luò)安全關(guān)鍵技術(shù),并以網(wǎng)絡(luò)安全模型為指導(dǎo),分析了校園網(wǎng)安全管理的對象和基本功能,構(gòu)建了更為安全的P-WPDRRC安全模型,通過對模型各模塊的研究,綜合利用防火墻技術(shù)、入侵檢測技術(shù)、防病毒技術(shù)、安全掃描技術(shù)、密碼技術(shù)等各種網(wǎng)絡(luò)安全技術(shù),分別從物理安全、鏈路安全、網(wǎng)絡(luò)安全、系統(tǒng)安全、應(yīng)用安全和管理安全六個方面進(jìn)行安全體系的設(shè)計與實現(xiàn),對具體的實現(xiàn)方法進(jìn)行了分析,重點討論了利用防火墻和入侵檢測技術(shù)綜合實現(xiàn)安全防范的技術(shù)實現(xiàn)以及入侵檢測技術(shù)在安全體系中的應(yīng)用。最后,通過搭建仿真模擬環(huán)境進(jìn)行測試,證實了課題研究的校園安全體系具有防御攻擊、檢測病毒的能力,對網(wǎng)絡(luò)安全防護(hù)作用明顯。本文創(chuàng)新點如下:(1)經(jīng)過對傳統(tǒng)網(wǎng)絡(luò)安全模型的研究,建立了一個針對校園網(wǎng)安全的P-WPDRRC動態(tài)安全模型,并以安全策略為核心,充分利用防火墻技術(shù)、入侵檢測技術(shù)、身份認(rèn)證技術(shù)、加密技術(shù)和數(shù)據(jù)恢復(fù)技術(shù)等,為整個校園網(wǎng)提供安全保護(hù)。(2)通過對入侵檢測技術(shù)和模型的研究,提出了基于移動Agent的入侵檢測模型,該模型將大大減少系統(tǒng)的通信負(fù)載,并且能夠檢測到新的或未知形式的攻擊。(3)在研究主動防御技術(shù)的基礎(chǔ)上,利用改進(jìn)的BP神經(jīng)網(wǎng)絡(luò)算法,縮短了入侵檢測的時間,提高了檢測能力和收斂速度,實驗證明該算法能夠達(dá)到預(yù)期的效果。
[Abstract]:With the rapid development of computer technology and network technology, great changes have been brought to various industries, including the use of network information in colleges and universities, rich network resources, application services to provide good work for teachers and students. Learning and living environment have promoted the reform and development of education and teaching and daily management in colleges and universities. How to design and build a safe, reliable, university network, reduce the computer virus invasion, hacker attack, data tampering and other aspects of network security hidden danger, is the current and future colleges and universities urgently need to solve. Firstly, through the current situation of network security at home and abroad, this paper analyzes the security threats and sources of the current campus network, and points out the key problems to be solved in constructing a secure campus computer network. Secondly, this paper introduces the key technologies of network security commonly used in campus network, and analyzes the objects and basic functions of campus network security management under the guidance of network security model, and constructs a more secure P-WPDRRC security model. Comprehensive use of firewall technology, intrusion detection technology, anti-virus technology, security scanning technology, cryptography technology and other network security technologies, respectively from physical security, link security, network security, system security, The security system is designed and implemented in six aspects of application security and management security, and the specific implementation methods are analyzed. This paper focuses on the implementation of integrated security prevention using firewall and intrusion detection technology and the application of intrusion detection technology in security system. Finally, by setting up a simulation environment for testing, it is proved that the campus security system studied in this paper has the ability to defend against attacks and detect viruses, which has obvious protective effect on network security. The innovation of this paper is as follows: (1) based on the research of the traditional network security model, a dynamic security model of P-WPDRRC for campus network security is established, which takes security policy as the core, makes full use of firewall technology and intrusion detection technology. Identity authentication technology, encryption technology and data recovery technology, provide security protection for the whole campus network. Through the research of intrusion detection technology and model, this paper puts forward an intrusion detection model based on mobile Agent. This model will greatly reduce the communication load of the system, and can detect new or unknown forms of attack. Based on the research of active defense technology, the improved BP neural network algorithm is used to shorten the time of intrusion detection. The detection ability and convergence speed are improved, and the experimental results show that the proposed algorithm can achieve the desired results.
【學(xué)位授予單位】：蘭州理工大學(xué)
【學(xué)位級別】：碩士
【學(xué)位授予年份】：2017
【分類號】：TP393.08;TP393.18

【參考文獻(xiàn)】

相關(guān)期刊論文 前10條

1 林玉梅;;防火墻技術(shù)及其應(yīng)用研究[J];軟件導(dǎo)刊;2012年09期

2 李明;程顯毅;;基于改進(jìn)BP神經(jīng)網(wǎng)絡(luò)的智能Agent分布式入侵檢測系統(tǒng)[J];計算機(jī)應(yīng)用與軟件;2009年01期

3 ;Recurrent neural network for vehicle dead-reckoning[J];Journal of Systems Engineering and Electronics;2008年02期

4 李靜燕;;入侵檢測系統(tǒng)及其研究進(jìn)展[J];網(wǎng)絡(luò)安全技術(shù)與應(yīng)用;2008年03期

5 孫曉晗;;數(shù)據(jù)加密技術(shù)及網(wǎng)絡(luò)應(yīng)用[J];電腦知識與技術(shù)(學(xué)術(shù)交流);2007年12期

6 秦宗全;于詠梅;郭大春;;校園網(wǎng)絡(luò)安全防范體系研究[J];計算機(jī)時代;2007年02期

7 張曉偉;年立群;唐海峰;;網(wǎng)絡(luò)時代的數(shù)據(jù)加密技術(shù)[J];承德醫(yī)學(xué)院學(xué)報;2006年03期

8 劉永華;;基于Agent的分布式入侵檢測系統(tǒng)[J];濰坊學(xué)院學(xué)報;2006年02期

9 魏永紅;李天智;張志;;網(wǎng)絡(luò)信息安全防御體系探討[J];河北省科學(xué)院學(xué)報;2006年01期

10 滕鐵軍;構(gòu)筑企業(yè)級信息系統(tǒng)安全體系[J];網(wǎng)絡(luò)安全技術(shù)與應(yīng)用;2004年07期

相關(guān)碩士學(xué)位論文 前5條

1 羅曦;校園網(wǎng)絡(luò)安全體系構(gòu)建的研究與應(yīng)用[D];湖南大學(xué);2013年

2 周建坤;校園網(wǎng)環(huán)境下網(wǎng)絡(luò)安全體系的研究[D];山東大學(xué);2011年

3 曾顯峰;基于人工神經(jīng)網(wǎng)絡(luò)的入侵檢測技術(shù)研究[D];華南理工大學(xué);2010年

4 趙毅;高校校園計算機(jī)網(wǎng)絡(luò)設(shè)計與實現(xiàn)[D];重慶大學(xué);2006年

5 袁修春;校園網(wǎng)安全防范體系[D];西北師范大學(xué);2005年

，

本文編號：2038751