【摘要】 论文详细描述目前网络安全防范方面的一种新的系统监控思路———文件操作监控技术,传统的方式中对网络入侵的检测是通过IDS以及网络连接情况的监控,现已被入侵者所熟悉,入侵者往往能采用各种应对手段来逃避检测系统的追查。但是当系统被入侵后,入侵者会不可避免的在某些文件上留下痕迹,而文件操作监控技术就是利用对系统文件的监控来实现侦测入侵情况的有效的新方法.更多还原

【Abstract】 This article introduces a new network security technique—— — file operation monitoring.In traditional ways people detect network intrusions via IDS and monitoring network connections,now hackers have been familiar to these skills,they have many ways to avoid detecting.But it is inevitable that hackers will touch files,then the operation monitoring technique,which monitors some important system files to detect intrusions,is very useful.更多还原