嵌入式入侵检测系统的设计与实现
杨云;宓佳;党宏社
【期刊名称】《计算机工程与设计》 【年(卷),期】2011(032)001
【摘要】As for existing intrusion detection system that is namely high costs and low ability on detection.A embedded intrusion detection system is designed and implemented.The system used ARM9 microprocessor and the Linux-2.4 kernel as the operating system.It combined misuse detection and protocol analysis technology to detect the data packet in the network, and used unsupervised clustering algorithm to extract the intrusion feature, the existing intrusion rule is expanded.Experimental result showed that this system has high stability and better detection ability under certain conditions.%针对现有的入侵检测系统具有成本高、检测能力低等问题,设计实现了基于嵌入式的入侵检测系统.该系统以ARM9微处理器为核心,并使用Linux-2.4内核作为底层操作系统.该设计结合了误用检测技术与协议分析技术完成对数据报文的实时检测,并采用无监督聚类算法提取入侵特征,扩充了现有的入侵规则库.实验结果表明,在一定条件下该系统具有较高的稳定性及较好的检测能力. 【总页数】4页(21-23,27)
【关键词】嵌入式技术;入侵检测系统;防火墙;无监督聚类;网络安全 【作者】杨云;宓佳;党宏社
【作者单位】陕西科技大学,电气与信息工程学院,陕西,西安,710021;陕西科技