| With the growth of the Internet, the safety has received increasing attention.Intrusion deception and control technology now begin to show talent in this field.Intrusion deception and control technology is a new security technology which can detect, analyze and even control the intrusion actively. This paper analyzes different availableintrusion deception and control technologies, and then provides a new dynamic configuremodel, which takes the value of automatization of configure technology to improve theindependence, security and fraudulence of intrusion deception. We design the wholearchitecture of this model, explicate chiefly each module, and test the key implementationthrough experiment. WinPcap is used to implement the system level program. And in thewhole model, a new dynamic configure method which combine the active detection andpassive detection technology is provided to adjust the model's configuration. We use thesame date format construct the configurable information database. To enhance themodel's deception capability, we introduce the OS fingerprints simulating method to hostdeception module. When the state of the protected inner network is changed, this modelcan adjust the configuration itself. Through the experiment, this dynamic configurationmodel has been proved that it can identify some inner network features, deceive theintruders effectively and protect the network's security. |
PDF Full Text Request