协作防御系统架构研究与设计The Research and Design for System Architecture of Cooperative Defense
王欣
摘要(Abstract):
以分布式防火墙为基础,加入协作防御的概念,提出了一套合作式防火墙系统架构,并说明此架构下的合作式防火墙系统架构的运作流程。也对合作式防火墙系统架构的数种协作防御方式面临的困难点进行分析,而且对各种相应的解决方案也做了探讨。
关键词(KeyWords): 分布式防火墙;协作防御;合作式防火墙;网络安全
基金项目(Foundation):
作者(Author): 王欣
参考文献(References):
- [1]Steven M Bellovin.Distributed Firewalls,1999.39 47.
- [2]Sotiris Ioannidis,Angelos D Keromytis,Steven M Bellovin,et al.Implementing a Distributed Firewall,ACM Conferenceon Computer and Communications Security,Athens,Greece,November 2000.
- [3]Wei Li.Distributed Firewall,2000.
- [4]Matthew M Williasmson,Throttling Viruses.RestrictingPropagation to Defeat Malicious Mobile Code,18th AnnualComputer Security Applications Conference,2002.
- [5]Anil Somayaji,Stephanie Forrest.Automated Response U-sing System Call Delays.Proceedings of the 9th USENIXSecurity Symposium,August 2000.
- [6]High Level Firewall Language Projects,http://www.hlfl.org/and http://freshmeat.net/projects/hlfl/.
- [7]FireHOL Project,http://firehol.sourceforge.net/,Septem-ber 2002.
- [8]VulXML Project:A Web Application Security VulnerabilityDescription Language,http://www.owasp.org/vulnxml/,October 2002.
- [9]OVAL,Open Vulnerability Assessment Language,http://oval.mitre.org/,October 2002.
- [10]AVDL,Application Vulnerability Description Language,http://www.avdl.org/,April 2003.