东北大学学报(自然科学版)

东北大学学报(自然科学版) ›› 2010, Vol. 31 ›› Issue (9): 1246-1249.DOI: -

• 论著 • 上一篇    下一篇

一种适合分级Ad Hoc网络的入侵检测机制

于尧;郭磊;王兴伟;   

  1. 东北大学信息科学与工程学院;
  • 收稿日期:2013-06-20 修回日期:2013-06-20 出版日期:2010-09-15 发布日期:2013-06-20
  • 通讯作者: -
  • 作者简介:-
  • 基金资助:
    国家自然科学基金资助项目(60802023,70931001);;

A feasible intrusion detection mechanism in hierarchical Ad Hoc networks

Yu, Yao (1); Guo, Lei (1); Wang, Xing-Wei (1)   

  1. (1) School of Information Science and Engineering, Northeastern University, Shenyang 110004, China
  • Received:2013-06-20 Revised:2013-06-20 Online:2010-09-15 Published:2013-06-20
  • Contact: Yu, Y.
  • About author:-
  • Supported by:
    -

RichHTML

0

PDF (PC)

520

摘要: 针对分级Ad Hoc网络的结构特点和安全需求,提出一种基于节点行为的移动Agent入侵检测安全机制.该机制通过分析节点在路由过程中处理报文的能力建立标准节点行为模型,利用簇首Agent监测、收集簇中成员的行为信息,并与标准行为模型进行信息匹配分析,判断节点的异常行为,借助模糊方法定位攻击节点,采取相应的响应措施遏制恶意节点对网络的危害.仿真结果表明,所提出的安全机制能够快速、准确地检测到网络中的异常情况.

关键词: 分级Ad Hoc网络, 入侵检测, 行为分析, 移动Agent

Abstract: An intrusion detection mechanism was proposed for mobile agent to meet the security requirements in accordance to the hierarchical characteristics of Ad Hoc networks. In this mechanism, a typical behavior model of nodes is developed by analyzing the node's ability to deal with the messages in routing process. The cluster-head agent is used to monitor and collect the behavior information of all the members in the cluster. Then, the collected information is matched with the typical behavior model to estimate the abnormal behavior of the node, thus locating the attacking node by virtue of fuzzy method so as to take responding measures to restrict the harm of malicious nodes which are attacking the network. Simulation results showed that the intrusion detection mechanism proposed can detect the abnormalities in time and accurately in hierarchical Ad Hoc networks.

中图分类号: