自治代理在入侵检测技术中的应用
The Application of Autonomous Agents in the Technology of Intrusion Detection
-
摘要: 传统的信息安全防护技术已难以应对网络安全面临的挑战,基于自治代理的入侵检测技术应运而生。以动态安全模型(P2DR)为例,该系统包括代理、收发器、监控器。自治代理技术在数据采集和数据分析方面强于普通的入侵检测技术,在通信协议、远程配置与管理、安全性等方面有很大的优越性,但尚有不足之处和需要改进的地方。Abstract: The autonomous agents have advantages of generic intrusiondetection technology when used in the data collection and data analysis entities. This paper introduces an approach of intrusiondetection based on autonomous agents and the essential components of the architecture, proposes the defects of the arch itecture and corresponding future improvements.