基于宽带接入服务器的分布式安全审计系统
Distributed Security Auditing System Based on BAS
-
摘要: 用宽带接入服务器(BAS)作为分布式审计代理实现城域网(MAN)上的主动式安全审计系统.提出一种 新的硬件包过滤机制(HPF)以适合系统的需要.BAS上的路由转发机制从“一次路由,多次交换”改为“一次审 计,多次通过”.采用基于时间推理机的算法完成对UDP访问的审计.系统在试验网络中进行了测试,显示了很 好的审计处理性能.Abstract: A broadband access server (BAS) was used as auditing agent to implement a distributed security auditing system on metropolitan area network (DSASMAN). A new packet filter mechanism based on hardware packet filter (HPF) was proposed. The mechanism of routing and forwarding in BAS was modified from“route once, switch many”to“audit once, pass many”. The algorithm based on time inductive machine was used to accomplish the auditing to UDP based accesses. The proposed auditing system has been implemented in an experimental routing switch that was used as a BAS and showed good auditing performances.
-
Key words:
- metropolitan area network /
- security auditing /
- hardware packet filter /
- routing switch
点击查看大图
计量
- 文章访问数: 1419
- HTML全文浏览量: 66
- PDF下载量: 175
- 被引次数: 0