Concerning the problems of heavy network traffic, which is caused by the excessive load of master node, bad expansibility and poor ability to handle node failure in existing monitoring system, a novel Cloud Monitoring System based on Bionic autonomic nervous system (B-CMS) was proposed. Firstly, B-CMS imported hierarchical storage and batch-wise report mechanism to upload the monitoring information, which can decrease the network traffic at any moment to ensure monitor system's stability. In addition, the use of similar Dynamic Host Configuration Protocol (DHCP) and polling-driven heartbeat checking mechanism enabled the monitor system to get the self-organizing and self-repairing ability which is similar to Bionic Autonomic Nervous System (BANS) when adding new node and handling node failure in autonomic way. The experimental results show that B-CMS achieves self-organizing and self-repairing, and effectively decreases network traffic. In some special moment, the network traffic is only one-third of the original system.

Since traditional host operating system anti-fingerprinting technologies is lack of the ability of integration defense, a Network Deception based operating system Anti-Fingerprinting model (NDAF) was proposed. Firstly, basic working principle was introduced. The deception server made the fingerprint deception template. Each host dynamically changed the protocol stack fingerprint according to the fingerprint deception template, therefore the process of operating system fingerprinting by attacker was misguided. Secondly, a trust management mechanism was proposed to improve the system efficiency. Based on the different degree of threat, different deception strategies were carried out. Experiments show that NDAF makes certain influence on network efficiency, about 11% to 15%. Comparing experiments show that the anti-fingerprinting ability of NDAF is better than typical operating system anti-fingerprinting tools (OSfuscatge and IPmorph). NDAF can effectively increase the security of target network by integration defense and deception defense.