èŠ‚ç‚¹æ–‡çŒ®

åŸºäºŽè™šæ‹Ÿä¸“ç”¨æŠ€æœ¯çš„ç½‘ç»œç©ºé—´é˜²å¾¡æ–¹æ³•ä»¿çœŸ

Simulation of Network Space Defense Method Based on Virtual Private Technology

æŽ¨è CAJä¸‹è½½
PDFä¸‹è½½
ä¸æ”¯æŒè¿…é›·ç‰ä¸‹è½½å·¥å…·ï¼Œè¯·å–æ¶ˆåŠ é€Ÿå·¥å…·åŽä¸‹è½½ã€‚

ã€ä½œè€…ã€‘ å²³å°‘åšï¼› çŽ‹æ¸…æ²³ï¼› çŽ‹æ™“æ˜¥ï¼› è°¢åˆ©å¾·ï¼›

ã€Authorã€‘ YUE Shao-bo;WANG Qing-he;WANG Xiao-chun;XIE Li-de;Chengde Medical University, Educational Technology Center Department of Educational Technology Center;

ã€é€šè®¯ä½œè€…ã€‘ è°¢åˆ©å¾·;

ã€æœºæž„ã€‘ æ‰¿å¾·åŒ»å¦é™¢æ•™è‚²æŠ€æœ¯ä¸å¿ƒï¼›

ã€æ‘˜è¦ã€‘ ä¼ ç»Ÿç½‘ç»œé˜²å¾¡æ–¹æ³•ç¼ºä¹å¯¹æœªçŸ¥æ”»å‡»çš„è½¬æ¢è¿‡ç¨‹,å…¶æ”»å‡»æ£€æµ‹ç»“æžœæ— æ³•æ›´æ–°,å¯¼è‡´ç½‘ç»œç©ºé—´é˜²å¾¡è¯¯æŠ¥çŽ‡è¾ƒé«˜ã€‚ä¸ºæ¤å¼•å…¥è™šæ‹Ÿä¸“ç”¨æŠ€æœ¯å¯¹ç½‘ç»œç©ºé—´é˜²å¾¡æ–¹æ³•è¿›è¡Œè®¾è®¡ä¸Žç ”ç©¶ã€‚æ ¹æ®å®žé™…ç½‘ç»œç©ºé—´é˜²å¾¡éœ€æ±‚è®¾è®¡æ•´ä½“æž¶æž„,é€šè¿‡é˜²ç«å¢™è®¾ç½®æŽ§åˆ¶ç½‘ç»œç©ºé—´æ•°æ®ã€‚é‡‡ç”¨é˜²ç«å¢™ã€å…¥ä¾µæ£€æµ‹ç³»ç»Ÿä¸Žè™šæ‹Ÿä¸“ç”¨ç½‘å¯¹ç½‘ç»œç©ºé—´æ•°æ®è¿›è¡Œä¸‰å±‚æ•èŽ·ã€‚é‡‡ç”¨èšç±»ä¸Žå…³è”åˆ†æžç®—æ³•å¯¹æ•°æ®è¿›è¡Œåˆ†æž,å¾—åˆ°æœªçŸ¥æ”»å‡»å¼ºè§„åˆ™ã€‚ä¾æ®å…¥ä¾µæ£€æµ‹è§„åˆ™åº“çš„æ ‡å‡†å¯¹æœªçŸ¥æ”»å‡»å¼ºè§„åˆ™è¿›è¡Œè½¬æ¢,å¹¶å°†å…¶æ·»åŠ è‡³å…¥ä¾µæ£€æµ‹è§„åˆ™åº“ä¸å¹¶æ›´æ–°,ä»¥æ›´æ–°çš„å…¥ä¾µæ£€æµ‹è§„åˆ™åº“ä¸ºæ ‡å‡†å®žçŽ°ç½‘ç»œç©ºé—´çš„é˜²å¾¡ã€‚é€šè¿‡ä»¿çœŸå¯çŸ¥,ä¸ŽçŽ°æœ‰ä¸‰ç§æ–¹æ³•ç›¸æ¯”,æå‡ºæ–¹æ³•çš„ç½‘ç»œç©ºé—´é˜²å¾¡æ–¹æ³•æžå¤§é™ä½Žäº†æ–¹æ³•çš„è¯¯æŠ¥çŽ‡ä¸Žæ¼æŠ¥çŽ‡,ä¸”æœªçŸ¥æ”»å‡»è½¬æ¢çŽ‡é«˜ã€é˜²å¾¡ç²¾åº¦é«˜,å……åˆ†è¯´æ˜Žæå‡ºçš„ç½‘ç»œç©ºé—´é˜²å¾¡æ–¹æ³•å…·å¤‡æ›´å¥½çš„é˜²å¾¡æ€§èƒ½ã€‚æ›´å¤š è¿˜åŽŸ

ã€Abstractã€‘ Traditionally, the network defense methods lack the conversion process for unknown attacks, and the attack detection results cannot be updated, resulting in high false alarm rate of network space defense. Therefore, this article introduced a virtual private technology to design and research the method of cyberspace defense. According to the actual network space defense needs, the overall structure was designed. Based on the firewall settings, the network space data was controlled. Moreover, firewall, intrusion detection system and virtual private network were used to capture the network space data. The data was analyzed by the clustering and association analysis algorithm, and then strong rules of unknown attack were obtained. According to the standards of intrusion detection rule base, the strong rules of unknown attacks were transformed and added to the intrusion detection rule base. Then, the intrusion detection rule base was updated. Based on the updated intrusion detection rule base, the network space defense was achieved. Simulation verifies that, compared with the existing methods, the proposed method greatly reduces the false alarm rate and missing alarm rate, and has high conversion rate and high defense accuracy of unknown attack. Therefore, the proposed method has better defense performance.æ›´å¤š è¿˜åŽŸ

ã€å…³é”®è¯ã€‘ è™šæ‹Ÿä¸“ç”¨æŠ€æœ¯ï¼› ç½‘ç»œç©ºé—´ï¼› é˜²å¾¡ï¼› é˜²ç«å¢™ï¼›
ã€Key wordsã€‘ Virtual private technologyï¼› Network spaceï¼› Defenseï¼› Firewallï¼›

ã€åŸºé‡‘ã€‘ 2019å¹´æ‰¿å¾·å¸‚ç¤¾ä¼šç§‘å¦è”åˆä¼šç«‹é¡¹é¡¹ç›®(20193177);2018å¹´æ‰¿å¾·å¸‚ç§‘æŠ€å±€ç«‹é¡¹é¡¹ç›®(201802B003);2015å¹´æ‰¿å¾·åŒ»å¦é™¢ç«‹é¡¹æ ¡çº§æ•™è‚²ç§‘ç ”é¡¹ç›®(20150004)

ã€æ–‡çŒ®å‡ºå¤„ã€‘ è®¡ç®—æœºä»¿çœŸ ,Computer Simulation , ç¼–è¾‘éƒ¨é‚®ç®± ,2020å¹´05æœŸ

ã€åˆ†ç±»å·ã€‘TP393.08
ã€è¢«å¼•é¢‘æ¬¡ã€‘4
ã€ä¸‹è½½é¢‘æ¬¡ã€‘63

çŸ¥ç½‘èŠ‚ä¸‹è½½

èŠ‚ç‚¹æ–‡çŒ®ä¸ï¼š

æœ¬æ–‡é“¾æŽ¥çš„æ–‡çŒ®ç½‘ç»œå›¾ç¤º:

æœ¬æ–‡çš„å¼•æ–‡ç½‘ç»œ

èŠ‚ç‚¹æ–‡çŒ®