【摘要】 现在的入侵检测系统大多存在系统可扩展性差、入侵检测技术单一、缺乏对入侵事件有效的响应机制等问题,难以满足企业对入侵检测系统在规模及有效性上的的需求。文章设计了一种大规模分布式入侵检测系统的整体模型,并在系统中综合运用了多种入侵检测方法和响应机制,使整个系统具有好的规模扩展性、高的入侵检测性能和有效的响应机制。更多还原

【Abstract】 Present Intrusion Detection Systems exist several problems including poor expansibility,simplified intrusion de-tection technology,invalid response to intrusions,etc.Because of these problems ,it is unable to meet with the enterpris-es’ demands.This paper advances a kind of system model of large-scale distributing IDS,in this system,adopts syntheti-cally several valid intrusion detection methods and responding mechanisms.So,this system have excellent expansibility,efficient intrusion detection performance and valid responding mechanisms.更多还原