Dissertation > Excellent graduate degree dissertation topics show

The Research and Implemetation of Stream Filter Technology in Network Security Isolation and Information Exchange System

Author: DingFengXiang
Tutor: ZhangZuo
School: National University of Defense Science and Technology
Course: Computer Science and Technology
Keywords: Flow filtration Isolation exchange State detection Protocol data Content data Netfilter
CLC: TP393.08
Type: Master's thesis
Year: 2007
Downloads: 67
Quote: 0
Read: Download Dissertation


With the extensive application of the Internet , network security issues more and more people's attention . Network security isolation and information exchange technology has become today's network is the most effective means of security and defense . Traditional network security isolation and information exchange technologies , including packet filtering technology and agent technology . Simple packet filtering technology to achieve high performance of network processing , but the lack of protection for the application layer . Agent technology provides the ability to protect the application layer , but the performance of the network processing can not meet the growing demand for network users . How to adjust the safety performance and processing performance irreconcilable contradictions are increasingly pay attention . Flow filtration technology came into being , it combines the advantages of packet filtering technology and agent technology to provide protection to the application layer packet filtering external morphology . This article the convection filter technology carried out in-depth research . Thesis on network security isolation and information exchange technology carried out in-depth research , summed up the general architecture of the system in isolation exchange , analysis of the characteristics of the packet filtering technology and agent technology , and to clarify the advantages of flow filtration technology . Secondly , in-depth analysis of the problems of flow filtration thinking and existing implementations flow filtration technology on the basis of in-depth study of the TCP / IP protocol and application layer protocol characteristics , the key point is that : on the basis of the state detection of TCP packet classification processing . TCP packets based on the key points , divided into application and application-independent two categories , which is divided into application message protocol data packets and content of data packets two categories . The flow filter packets of the different types of security checks at different depths . Flow filtration to achieve the key algorithm . Proposed check the legality and the rule matching algorithm optimized for state detection ; proposed session state detection algorithm for the processing of the protocol data packets ; implementation algorithm of the proposed restructuring and forwarded for processing message content data into blocks . Finally, the design and implementation of a stream filter function modules based on the Linux netfilter framework , through functional testing and performance testing and validation flow filtration technology advantages in safety performance and processing performance . In the final the next step was expected.

Related Dissertations

  1. The Research and Implementation of Traffic Control System Based on Linux,TP393.06
  2. Security gateway traffic data collection and monitoring agent design and implementation,TN915.08
  3. UPS power supply battery charging system of equalization,TN86
  4. Based on wireless sensor network routing protocol LEACH Data Fusion Algorithm,TP212.9;TN929.5
  5. Acquisition and Analysis Technology of SNMP Security Situation Information,TP393.08
  6. The Design and Implement of the Kenel in Network Behavior Management Gateway System Based on Linux,TP393.05
  7. Research and Implementation on Optimization Technology of Packet Classification Based on Netfilter,TP393.08
  8. Firewall designed to achieve the state based on the Jushi 863 chip,TP393.08
  9. Design and Implement of P2P Traffic Identification System Based on Compound Characteristics,TP393.06
  10. Research on the Prevention of SYN Flood Attack Based on Turing Tests,TP393.08
  11. Design and Implementation of Linux-Based Network Traffic Statistics and Network Access Control System,TP393.08
  12. Research and Implementation of State Inspection Firewall Based on Linux 2.6,TP393.08
  13. Research on Active Firewalls Based on ARM-Linux,TP393.08
  14. Flow-based IPv6 firewall filtering technology research,TP393.08
  15. P2P Protocol Recognition Technology and Traffic Restrictions on Research,TP393.04
  16. Research of P2P Flow Control Based on Linux Kernel Expanded Model,TP393.08
  17. Research and Implementation of Service Sense and Rate Control Technology on the Intelligent Home Gateway,TP273.5
  18. Design and Implementation of a monitoring system based on network protocol analysis,TP393.08
  19. Design and Implementation of the Load Balance Cluster System with High Availability Based on LVS,TN915.05
  20. Ad Hoc Network Technology in Wireless Video Transmition System,TN929.5
  21. Based on the dual characteristics of P2P traffic detection and control technology,TP393.06

CLC: > Industrial Technology > Automation technology,computer technology > Computing technology,computer technology > Computer applications > Computer network > General issues > Computer Network Security
© 2012 www.DissertationTopic.Net  Mobile