| 网络取证日志分布式安全管理 |
| |
| 引用本文: | 戴江山,李向阳,张增军,肖军模.网络取证日志分布式安全管理[J].电子科技大学学报(社会科学版),2007(2). |
| |
| 作者姓名: | 戴江山 李向阳 张增军 肖军模 |
| |
| 作者单位: | 总参谋部第61研究所 北京丰台区100039(戴江山),解放军理工大学通信工程学院 南京210007(李向阳,张增军,肖军模) |
| |
| 基金项目: | 国家自然科学基金资助项目(69931040) |
| |
| 摘 要: | 提出了一种网络取证日志分布式安全管理方法,通过日志代理和管理网关将分散的异构的日志收集并存储到多个管理节点。该管理节点采用信息分配算法IDA将日志记录分散为n份,计算所有分片单向散列值,并同该节点相应存储分片关联存储。取证分析时,管理节点根据网络入侵事件多特征关联性,利用任意m(m
|
| 关 键 词: | 分布式 日志 网络取证 网络安全 |
Distributed Security Management of Network Forensic Log |
| |
| DAI Jiang-shan,LI Xiang-yang,ZHANG Zheng-jun,XIAO Jun-mo.Distributed Security Management of Network Forensic Log[J].Journal of University of Electronic Science and Technology of China(Social Sciences Edition),2007(2). |
| |
| Authors: | DAI Jiang-shan LI Xiang-yang ZHANG Zheng-jun XIAO Jun-mo |
| |
| Institution: | DAI Jiang-shan1,LI Xiang-yang2,ZHANG Zheng-jun2,XIAO Jun-mo2 |
| |
| Abstract: | A distributed security management method of network forensic log is proposed and designed in this paper. The log agents and management gateway collect and forward the log records to the multi-management nodes. The log records are respectively dispersed into n shares by information dispersal arithmetic in the node, and the node stores the corresponding share and the hash values of all shares. The management node can reconstruct the log records through corresponding information in m (m
|
| |
| Keywords: | distributed log network forensics network security |
| 本文献已被 CNKI 等数据库收录! |
