Active Defense Security Model in the Application of Network Deception System Design
As the traditional network defense is built on intrusion detection and passive protection,which is weak at dynamic response.The network deception technology in active protection is analyzed,and a network deception system based on active security model is proposed in this paper.This system implements a visual service of Honeypot as bait,analyses intrusion data and extracts new features and rules to enlarge the intrusion detection system feature library.The defense policies could be delivered real-time by management center.The problems of false alarm and leaking alarm for firewall or IDS are improved.And the limitations of single technology on the cooperation are overcome by linkage of Honeypot,firewall,IDS and router.The efficiency of unknown intrusion detected is increased.
Active defense security model network deception honeypot linkage
Jiawei Du Xing Zhang Ying Zhou Yongqiang Bai
Luoyang Electronic Equipment Test Center of China(LEETC)Luoyang China
国际会议
太原
英文
804-806
2013-04-06(万方平台首次上网日期,不代表论文的发表时间)