通过对网络数据包的分析,挖掘出网络系统中频繁发生的行为模式,并运用模式相似度比较对系统的行为进行检测,进而自动建立异常和误用行为的模式库。
By analysis of network traffic (packets), frequent user behavior profiles are mined, and then by comparing the profile similarity, system behavior can be detected in real-time.
入侵检测模块将根据网络数据包捕获模块上接收到的包并结合网络入侵规则库进行分析,把分析的结果传递给系统管理模块。
Network intrusion detection module will analyze the package from data packet capture modules and combine network intrusion rule database, and then transmit the results to the system management module.
该文截取实际网络链路上的流量,对数据包处理过程进行模拟,并分析cache机制对网络处理器的各性能参数的影响。
This paper presents a simulation of the packet processing procedure using real traffic traces to analyze the impact of the caching mechanism on the network processor performance.
应用推荐