文章介绍了入侵检测技术的概念、分类和通用入侵检测模型,并分析了入侵检测系统的弱点和局限性。
This paper introduces the concept of intrusion detection technology, classifications and general model, and analyzes the weaknesses and limitations of intrusion detection System.
在此基础上,在实时审计分析系统的设计部分,依照通用的入侵检测模型(CIDF)对监控事件的产生、用户正常规则库、监控分析过程和响应单元逐个进行阐述。
On the designing part of the RAAS, the generation of events, the normal library of users, the process of detecting and analyzing, and the response units were described based on the CIDF.
本文论证了应用该模型的可行性,并利用通用入侵检测框架CIDF对应用该模型的入侵检测系统进行了描述,最后与其它入侵检测模型进行了比较。
This paper proves that the model is feasible for intrusion detection and describes the IDS that USES this model to describe net-attacks by CIDF (Common intrusion detection Framework).
应用推荐