附网存储设备用户行为的一种层次化免疫策略 | |
孙照焱 ; 董永贵 ; 贾惠波 ; 冯冠平 ; SUN Zhao-yan ; DONG Yong-gui ; JIA Hui-bo ; FENG Guan-ping | |
2010-06-08 ; 2010-06-08 | |
关键词 | 附网存储设备 入侵检测系统 系统调用 Linux Network-Attached Storage Device(NASD) Intrusion Detection System (IDS) System Call Linux TP393.08 |
其他题名 | A Multilevel Immune Strategy for User Behaviors in Network-Attached Storage Device |
中文摘要 | 受生物免疫机制的启发,针对附网存储设备用户的异常行为,提出由用户认证、文件权限和用户阶梯组成的层次化免疫策略,对用户行为所请求的系统调用序列进行异常监控,并实现了基于系统调用对和用户分阶信息的异常检测算法,特征元素的阶梯式矩阵存储和高效的匹配方法保证了免疫策略的快速实施。实验表明,该策略能够有效阻止非法用户的入侵及合法用户的越权访问,且足够快的响应速度完全满足在线检测的需要。; Inspired from the biological immunity mechanism, a multilevel immune strategy, composed of user authentication, access authority of file system and user stair, is presented to identify abnormal behaviors in network-attached storage devices. Tracking the system calls required bye users' operations, the anomalies are monitored. An anomaly detection algorithm, which is based on system call pairs and user rank, is established and implemented. The eigenvalues are stored in a novel matrix and an efficient matching method is utilized, which ensures the immune strategy to be carried out rapidly. Experimental results show that this strategy can abort anomalies efficiently, including intrusions of unauthorized users and inadmissible accesses of authorized users. Furthermore, the response speed is fast enough for on-line monitoring.; 国家重点基础研究"973"基金资助项目(G19990330) |
语种 | 中文 ; 中文 |
内容类型 | 期刊论文 |
源URL | [http://hdl.handle.net/123456789/49445] |
专题 | 清华大学 |
推荐引用方式 GB/T 7714 | 孙照焱,董永贵,贾惠波,等. 附网存储设备用户行为的一种层次化免疫策略[J],2010, 2010. |
APA | 孙照焱.,董永贵.,贾惠波.,冯冠平.,SUN Zhao-yan.,...&FENG Guan-ping.(2010).附网存储设备用户行为的一种层次化免疫策略.. |
MLA | 孙照焱,et al."附网存储设备用户行为的一种层次化免疫策略".(2010). |
个性服务 |
查看访问统计 |
相关权益政策 |
暂无数据 |
收藏/分享 |
除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。
修改评论