基于TIAA的实时入侵分析系统的设计与实现
real time alert analysis system based on TIAA
本文给出了一种基于TIAA框架的实时警报分析系统的设计。该系统使用分布式架构,在网络的主要节点架设Agent进行网络监控,在控制中心架设TIAA框架进行警报分析。本文阐述了对TIAA模块和Agent模块、及二者之间通信流程的设计和实现。实验的结果证明了设计的有效性。
In this paper, the design of a real time alert analysis system has been given. The system uses distribution architecture to build up the Agent and TIAA. Agent which is emplaced in the main point of the subnet, collects the alerts and stores them in a given format. TIAA, the center of the system, requests the user-interested alerts from the Agent and analyzes them. This paper is dedicated to explain the design of the system, and a example graph will be given in the end.
马严、马堃、胡文龙、林昭文、韦力
计算技术、计算机技术自动化技术、自动化技术设备
警报分析,警报检测,TIAA
lert Analysis Alert Detect TIAA
马严,马堃,胡文龙,林昭文,韦力.基于TIAA的实时入侵分析系统的设计与实现[EB/OL].(2008-02-28)[2025-08-21].http://www.paper.edu.cn/releasepaper/content/200802-365.点此复制
评论