应用层并行重组在NIDS中的设计与实现

• 计算机科学 • Previous Articles Next Articles

Design and Implementation of Application Layer ParallelReassembling in NIDS

YANG Hongyu¹,²,³, ZHAO Xiaoling³

1. Software Research Center, Civil Aviation University of China, Tianjin 300300, China; 2. Tianjin Key Laboratory for Advanced Signal Processing, Civil Aviation University of China, Tianjin 300300, China; 3. School of Electronic Information Engineering, Tianjin University, Tianjin 300072, China

Received:2005-06-22 Revised:1900-01-01 Online:2006-07-26 Published:2006-07-26
Contact: YANG Hongyu

Abstract

Abstract: A new parallel reassembly approach ALPPR and its prototype are presented in the light of the weakness of present Network Intrusion Detection Systems (NIDS), especially the procedure of IP fragments and TCP flows reassembling. We adopted an idea based on LogP model and masterslave mode to complete parallel task allocation and implementation. Some key information such as sessions and their corresponding states, operation results were saved by using a twodimensional linked list in parallel reassembly process. Meanwhile, a dynamic allocation strategy was used to keep load balancing. Experimental results show that ALPPR has good effectiveness and high performance.

Key words: intrusion detection, parallel reassembling, twodimensional linked list, load balance

CLC Number:

TP393.08

YANG Hongyu,,, ZHAO Xiaoling. Design and Implementation of Application Layer ParallelReassembling in NIDS[J].J4, 2006, 44(04): 575-582.

[1]	WANG Chuhang, WANG Xue, HU Huangshui, ZHAO Hongwei, HAN Youjia. Secure Clustering Routing Protocol Based on Improved GA and Trust-Aware for Wireless Sensor Networks [J]. Journal of Jilin University Science Edition, 2021, 59(5): 1237-1244.
[2]	WU Jianan, WU Jian, DI Huanshuang, WANG Yuying, LI Nianfeng. Load Balancing Clustering Control Algorithm of Imitation Box Fish Based on Logical Partition [J]. Journal of Jilin University Science Edition, 2020, 58(6): 1407-1414.
[3]	WANG Chuhang, SHEN Weina, HU Huangshui. Fault Tolerance and Nonuniform Clustering Algorithm forWireless Sensor Networks Based on Distributed Fuzzy Controller [J]. Journal of Jilin University Science Edition, 2018, 56(3): 631-638.
[4]	REN Weiwu, ZHANG Bochen, DI Xiaoqiang, LU Yinan. Density Clustering Anomaly Intrusion DetectionAlgorithm Based on ABCDBSCAN [J]. Journal of Jilin University Science Edition, 2018, 56(1): 95-100.
[5]	YUAN Kaiyin, FEI Lan. Detection of Network Intrusion Based on Hybrid ParticleSwarm Optimization Algorithm Selection Features [J]. Journal of Jilin University Science Edition, 2016, 54(02): 309-314.
[6]	YANG Zhiwei, Nurbol, JIA Xue, HU Liang. Intrusion Feature Selection Methods Based on ReliefF [J]. Journal of Jilin University Science Edition, 2015, 53(03): 505-510.
[7]	CUI Yafen, XIE Nannan. An Intrusion Detection Method Based on Feature Selection [J]. Journal of Jilin University Science Edition, 2015, 53(01): 112-116.
[8]	ZHANG La, LIU Shufen, HAN Lu. Algorithm for Tasks Scheduling Based on Load Balance [J]. Journal of Jilin University Science Edition, 2014, 52(04): 769-772.
[9]	WANG Zhong-Ce, LI Wen-Ai. Inverse Dynamics Modeling and Emulating of FlexibleMulti-arthrosis Manipulator Based on Screw Theory [J]. J4, 2011, 49(01): 98-104.
[10]	HU Liang, WANG Cheng-Meng, DIAO Kuo, NU Er-Bu-Li, JIANG Qian. Research and Improvement of Detector Generation Algorithm inIntrusion Detection System Based on Artificial Immune Model [J]. J4, 2010, 48(1): 67-72.
[11]	HU Liang, LIN Wei-Wu, LIN Fei, LIU Xiao-Bo, JIN Gang. Anomaly Detection Algorithm Based onImproved Density Clustering [J]. J4, 2009, 47(05): 954-960.
[12]	ZHANG Dan, REN Fei, ZHAO Kuo, ZHANG Yuan yuan,LIU Xiaobo, REN Weiwu, HU Liang. A SVMbased System for Online Unsupervised Intrusion Detection [J]. J4, 2009, 47(02): 323-329.
[13]	LI Ruixue,, FANG Zhiyi,, DAI Zhiming, YAN Youlai, XIAO Wei. Research of IDS Evaluation Method Based on Bayesian Theory [J]. J4, 2008, 46(05): 925-929.
[14]	XIAO Wei,, FANG Zhiyi, WANG Wei, YANG Hongjun. A Payloadadapt Intrusion Detection Method [J]. J4, 2008, 46(04): 725-728.
[15]	KU Yu, HU Liang, ZHANG Xiaohui. An Autonomous Distributed Intrusion Detection SystemBased on Agent and Honeypot [J]. J4, 2007, 45(03): 399-404.

Design and Implementation of Application Layer ParallelReassembling in NIDS

PDF (PC)

Like

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Metrics

Comments

Recommended 10