计算机应用与软件2012,Vol.29Issue(12):309-314,6.DOI:10.3969/j.issn.1000-386x.2012.12.087
安全事件采集关键技术研究与实现
STUDY AND IMPLEMENTATION OF KEY TECHNOLOGIES IN SECURITY EVENTS ACQUISITION
摘要
Abstract
Given there are the deficiency of security events data acquisition in uniform data format and too many items of the events to be transmitted, etc. , we propose in this paper the data decoding technique and security events analysis technique used at data acquisition agent. The data decoding technique is mainly used to decode the data of security events, therefore different security events will have the same data format. The security events analysis technique is mainly used to filter and associate the security events decoded. In the paper we present the implementation of a simple distributed security events acquisition system, as well as the tests on two techniques proposed. Test results show that these two techniques can be used well at security events acquisition agent.关键词
安全事件/数据采集/数据解码Key words
Security event/Data acquisition/Data decoding分类
信息技术与安全科学引用本文复制引用
胡卫华,张利,刘锡峰..安全事件采集关键技术研究与实现[J].计算机应用与软件,2012,29(12):309-314,6.
