Journal of Computer Applications ›› 2009, Vol. 29 ›› Issue (09): 2315-2318.
• Information security • Next Articles
Received:
Revised:
Online:
Published:
杨宏宇1,邓强2,谢丽霞3
通讯作者:
基金资助:
Abstract: Nowadays, it is very difficult for various network security components to adopt unified security policy in one network environment, which results in not fully taking advantage of the whole network protection. The authors presented a cooperative model based on security domain layer with three-layer structure and two-class management. The security domain was used as the fundamental unit to implement collaboration and management, and an Intrusion Detection Exchange Protocol (IDXP) protocol based on Blocks Extensible Exchange Protocol (BEEP) frame was implemented to transmit Intrusion Detection Message Exchange Format (IDMEF) messages. The experimental results demonstrate that this model and IDXP can effectively implement message transmission and collaborative operation.
Key words: security network, collaborative operation, component, cooperative response, security domain
摘要: 当前网络环境中安全组件难以实施统一的安全策略,无法充分发挥网络安全防护的整体优势。提出一种基于安全域分层思想的协同操作模型,采用三层结构、两级管理模式,以安全域作为实现功能的最小单元实现安全组件间的协同和管理。采用基于可扩展块交换协议(BEEP)框架的入侵检测交换协议(IDXP)实现对入侵检测消息交换格式(IDMEF)消息的传递。仿真实验结果表明,提出的安全协同操作模型和IDXP可以有效实现网络安全组件间的信息传输和协同操作。
关键词: 网络安全, 协同操作, 组件, 协同响应, 安全域
CLC Number:
TP393.08
TP309.2
杨宏宇 邓强 谢丽霞. 网络安全组件协同操作研究[J]. 计算机应用, 2009, 29(09): 2315-2318.
0 / Recommend
Add to citation manager EndNote|Ris|BibTeX
URL: http://www.joca.cn/EN/
http://www.joca.cn/EN/Y2009/V29/I09/2315