一种基于Agent的分布式入侵检测系统功能结构研究
首发时间:2006-03-09
摘要:在分析现有基于Agent的入侵检测系统的基础上,提出了一种基于Agent的DIDS(Distributed Intrusion Detection System, 分布式入侵检测系统)模型。本系统采用分布检测,分布处理的模式,通过多Agent技术的思想建立DIDS整体结构。用Agent实现不同的功能单元,给出了模型的各个组成部分,并对模型中各种Agent的功能设计和实现原理进行了分析。尽管Agent的相关理论和系统有待发展与完善,但由于网络系统的分布式的特点以及网络应用的发展,基于Agent的检测框架应是未来IDS发展的重要方向。
关键词: Agent, DIDS 多Agent, 分布式
For information in English, please click here
Research on the Function and Architecture of an Agent-Based Distributed IDS
Abstract:In this paper, a distributed intrusion detection system model based on agent is brought up by analyzing the existed agent-based IDS. It builds up a DIDS model by adopting the method of distributed detection, distributed processing and thinking of multi-agent. It also realizes the different function unit with Agent, and gives all the composed parts of DIDS model, analyzes the function design and implement principle in Agent, researches the collaboration strategy of Agent. Despite the theories and systems associated with Agent wait to be improved, in the future, the development of IDS will focus on an agent-based detection framework because of distributed characteristic of network and developing network applications.
Keywords: Agent, DIDS, multi-agent, distributed
基金:
论文图表:
引用
No.5602521461141874****
同行评议
共计0人参与
勘误表
一种基于Agent的分布式入侵检测系统功能结构研究
评论
全部评论0/1000