基于探针技术的网络安全审计系统*
Network Security Audit System Based on Sniffer Technology

 

李贤阳,阳建中
LI Xianyang,YANG Jianzhong
 

(钦州学院电子与信息工程学院,广西钦州   535000)
(College of Electronic and Information Engineering,Qinzhou University,Qinzhou,Guangxi,535000,China)

 

摘要:【目的】为适应大规模网络环境和网络快速发展的需求,对网络系统进行全面深层次的审计分析,掌握网络系统的安全状况,增强安全防范能力。【方法】利用探针(sniffer)技术实时采集网络数据包并进行关联分析,结合C/S和B/S模式架构的优点来实现网络安全审计系统的设计。【结果】基于探针技术的C/S和B/S混合架构的网络安全审计系统能对互联网的各种行为提供有效的安全审计。【结论】该系统对网络数据包的安全审计效果良好,有一定的实用价值。
关键词:安全审计   探针技术   协议分析   封堵
中图分类号:TP393     文献标识码:A      文章编号:1002-7378(2016)01-0049-05
Abstract:【Objective】To meet the needs of large-scale network environment and the rapid development of the network,establish a comprehensive and indepth audit analysis to the network system,monitor the security situation of the network system,and enhance security capabilities.【Methods】The network security audit system was designed by using the related analysis of network data package through sniffer technology and the advantages of C/S and B/S architecture pattern.【Results】The results show that the system through the analysis of real-time network packets obtained by sniffer technology,and the C/S and B/S mixed architecture pattern,can provide effective security audit to the Internet actions.【Conclusion】The effect of network security audit system based on C/S and B/S mixed architecture pattern and sniffer technology on the audit security of the network packets is effective with practical value.
Key words:security audit,sniffer technology,protocol analysis,blockading

 

*广西高校科研项目(KY2015YB314)和广西区教改项目(2015JGA363)资助。

 

PDF全文下载cbimg.cnki.net/Editor/2016/0214/gxkx/e41be12d-dc62-4590-bd50-52633658291e.pdf

发布日期:2016/2/14