东北大学学报(自然科学版)

东北大学学报(自然科学版) ›› 2006, Vol. 27 ›› Issue (7): 739-742.DOI: -

• 论著 • 上一篇    下一篇

Ad Hoc网络的一种入侵检测模型

刘军;李喆;郭彬;耿蓉;   

  1. 东北大学信息科学与工程学院;东北大学信息科学与工程学院;东北大学信息科学与工程学院;东北大学信息科学与工程学院 辽宁沈阳110004;辽宁沈阳110004;辽宁沈阳110004;辽宁沈阳110004
  • 收稿日期:2013-06-23 修回日期:2013-06-23 出版日期:2006-07-15 发布日期:2013-06-23
  • 通讯作者: Liu, J.
  • 作者简介:-
  • 基金资助:
    国家高技术研究发展计划项目(2002AA784030)

An intrusion detection model for ad hoc network

Liu, Jun (1); Li, Zhe (1); Guo, Bin (1); Geng, Rong (1)   

  1. (1) School of Information Science and Engineering, Northeastern University, Shenyang 110004, China
  • Received:2013-06-23 Revised:2013-06-23 Online:2006-07-15 Published:2013-06-23
  • Contact: Liu, J.
  • About author:-
  • Supported by:
    -

RichHTML

1

PDF (PC)

776

摘要: 对Ad Hoc网络的路由安全性问题进行了研究,提出了一种分布式网络协作入侵检测模型,该模型建立在路由协议之上,针对不同的路由协议,分析其安全漏洞,总结攻击行为的判定规则,进行本地入侵检测;在此基础上,以多点协作的联合检测机制提高检测的正确率;并从节省网络资源的角度对入侵检测模型进行优化配置.以AODV路由协议为例介绍了该模型的工作机制,利用仿真软件NS2搭建网络仿真平台进行仿真实验,结果表明,该检测模型能更好地保障网络安全.

关键词: AdHoc网络, 分布式协作入侵检测, 有限状态机, 联合检测, 优化配置

Abstract: The issue of routing security in ad hoc network was studied. An intrusion detection model in cooperation with distributed network is proposed for ad hoc networks, based on routing protocols. Analyzing the flaws in security for different routing protocols and summarizing the rules of judging attack behavior, local intrusion detection was conducted. Each host run local IDS, and its detection result would be gathered for such cooperative intrusion detection. In this way, the detection probability increases while the false detection probability decreases. To save the resources of the entire network, an optimized configuration scheme is proposed. The AODV route protocol was taken as example to describe the working mechanism of this model of which the performance was simulated with NS2 (Network Simulation) software. Simulation results indicated that it can safeguard well the network against intruders and maintain the network performance.

中图分类号: