Abstract:

Intrusion prevention system are mainly based on the correlation between intrusion detection systems and firewalls, and the data format applied to identification and maintenance for both is usually different. These sensitive data are often transmitted in the open network environment, which faced with various security threats. To solve these problems, the trusted communication is introduced.The design and implementation of trusted communication protocol based on XML(eXtensible Markup Language) is provided. Compared to related works, this protocol achieves the implementation of secure data transmission between intrusion detection systems and firewalls in the heterogeneous environments, and scaled to various network security products and network management devices, which contributes to the data fusion among these devices and the detection of distributed network attacks.

Key words: trusted, communication protocol, extensible markup language(XML), transport layer security(TLS), common object request broker architecture（CORBA）