Home | hacker invade | crack analyzes | hacker course | Exploit | encryption decipher | network management | System crack | the virus to be related | invades the examination | firewall
You are here: hacking technology > invades the examination > Content
Hot Articles
ForensicSIM Toolkit gets
Serv-U bounce attack and
To the Image File Execut
Based on CallStack count
To a some music website
How to use double WAN ro
pcshare official net exa
Security precious book m
Honey jar and honey net
The invasion examination
pcshare official net exa
Tomcat invasion examinat
Bypasses the CallStack f
Ten big invasion examina
The network invasion exa
Recommend Articles
Only opens 80 port's saf
Bypasses the web key wor
Bypasses the CallStack f
Security precious book m
Based on CallStack count
pcshare official net exa
SQL Server SA idle talk
Honey jar and honey net
The invasion examines th
Four next generation inv
An accidental invasion e
The invasion examines (I
How to use IDS to invade
The invasion examination
A winding safe examinati
New Articles
TEA guidelines for risk
Training for medical per
JSIC Security Forum 2001
SITO includes E-Learning
The rationale for choosi
Drink and drug driving c
BTEC is Tavcom Training
International trade issu
1 in 5 companies is unli
New compact PD-350 for F
sharp rise in prices of
Passfaces strong authent
T3i teams with Passfaces
Comodo Two Factor Authen
Comfortable two-factor a
Four next generation invasions examine the (IDS) key technologies analysis
  Add date: 07/12/2008   Publishing date: 07/12/2008   Hits: 44
Total 5 pages, Current page:1, Jump to page:
 
The attack technology and the method develop unceasingly urge network security product unceasingly renewals and so on IDS, causes the IDS product from a simple machine's product development into intellectualization product.

  The invasion examination's research might trace JamesP.Anderson in 1980 work, he proposed for the first time “the threat” and so on terminology, here referred to “threat” with invasion meaning basic same, will invade the attempt or the threat definition will be: Latent, deliberate, the visit attempt without authorization, the cause system unreliable or is unable to use. in 1987 DorothyE. Denning gives an invasion examination for the first time the abstraction model, and will invade the examination to take a new safe defensive measure to propose. in 1988, the Morris worm event sped up to invades the examination system (IDS:Intrusion Detection System) the development research.

  In the past's 20 years, the networking was developing unceasingly, the aggressor level was enhancing unceasingly, attacks the tool and the attack technique day by day complex diverse, day by day was specially prominent take the hacker as representative's aggressor to the network threat, they were sparing no effort to carry on with all security product are struggling. The attack technology and the method develop unceasingly urge network security product unceasingly renewals and so on IDS, causes IDS the product from a simple machine's product development into intellectualization product.

  First, present IDS existence flaw

  The invasion examination system takes the network security protection the important means that has many places to be worth our further deep research. Present IDS also has many problems, waits for further consummates in us.

  1. Gao Wu police (misinformation) rate

  Harms police's traditional definition is takes for malignantly the benign current capacity. On generalized says, harms the police also to include to the IDS user does not care about event's warning. Therefore, causes IDS product Gao Wu police's rate reason is the IDS examination precision is excessively low as well as the user to harms the police concept the development.

  2. product adaptiveness is low

  Traditional IDS product when development has not considered the specific network environment the demand, stereotyped. The networking in the development, the network equipment becomes complicates, the diversification, this needs to invade the examination product to be able the dynamic alignment, adapts the different environment demand.

  3. large-scale network management question

  Many enterprise sizes are expanding unceasingly, develops to the IDS product's deployment from the simple point to the cross region whole world deployed, this raises the company to product management's question the program. First, must guarantee that the new product architecture can support the hundreds of IDS sensor; Next, must be able to handle the warning event which the sensor produces; In addition, but must solve the attack characteristic storehouse establishment, the disposition as well as the renewal question.

 
Other pages: : 1 * 2 * 3 * 4 * 5 * Next>>
Prev:The invasion examines the (IDS) discussion and the network security trend of development Next:An accidental invasion examination

Comment:

Category: Home > invades the examination
Home