Dissertation > Excellent graduate degree dissertation topics show

The Implementation of Network Monitor T Echnology in Window Platform

Author: WangJianZuo
Tutor: ZhengWanBo
School: Jilin University
Course: Software Engineering
Keywords: Windows Windows Socket Winsock 2 SPI Tcp/Ip
CLC: TP311.52
Type: Master's thesis
Year: 2008
Downloads: 58
Quote: 2
Read: Download Dissertation

Abstract


As the popularization of computer, communication by network becomes more and more frequent. Network makes us more convenience and freedom, but the security exists at the same time.Hacker problem and information leak are more danger than virus. Virus is eyeable and cleanable; on the contrary, the result is fearful because hackers always hide their whereabouts.As a network security production, Fire wall is accepted by more people. Network Monitor System using in PC becomes the popular way to protecting the security. Network Monitor System based on method of heading off data packet in Windows platform, but the realization are different. There are two mainly realization level, user level and kernel level. Kernel level technique is TDI filtrate driver, NDIS intermediate driver and NDIS filtrate hook driver, and so on. They all realize by network driver. User level technique includes SPI interface, packet filtrate interface of Windows 2000, etc.The program mainly uses winsock2 SPI to head off packet. Winsock2 is the version 2.0 of windows socket and the latest version is winsock1.1. Version 2.0 has the advantage of SPI interface and can used to realize Qos, URL filtrate and other security monitor function. It is strong and useful.Winsock is the network interface for up level application. It is no need to know the detail of Winsock. SPI interface exists as DLL and works in application layer. The system in this paper used user level packet filtrate technique by SPI interface. SPI has many advantages, such as auto load, ignore detail, etc.We divide the modules by two principles as following:Independency. Try our best to make the relationship of modules be less.Interface concision. Try our best to make the interface between modules concision by avoiding using static variable or function.The system encapsulates the module of packet analysis to one class, and plans to save some information to log, including the domain name, file name, email, user name and password. Because information is included in sending or receiving packet, we can separate them using this class.The system views are encapsulation packet view, log query view, rule setting view and system setting view. The view framework and sub page are realized by CpropertySheet and CpropertyPage.Now, we introduce one stronger network technique. It is the availability technique for winsock2 SPI. This technique is the main content which we can improve the system instead of SPI.The way of improving system is heading off packet in kernel level and one good choice is using NDIS-HOOK technique. The advantages of NDIS-HOOK are as following:The convenience of programming, concision of interface and stability of performance.More agile than winsock2. We can use the useful code and avoid bring excrescent code.Stronger than wonsock2. As a network filtrate driver program, it works in transfer layer, network layer, etc.More security than winsock2. The action of heading off packet works the bottom layers.The simpleness of installation.The principle of NDIS-HOOK is replacing the address of function in NDIS, so the request of NDIS will be operated by our own function and then be transferred the request to system function. It is simple.

Related Dissertations

  1. Research and Application of the Integrated Experimental System for Low-Voltage Power Line Carrier Communication,TM73
  2. Design and Implementation of Windows Kernel-mode Cryptographic Service Interface,TP309.7
  3. Transplant of Windows CE Operation System Based on ARM9,TP316.7
  4. Application and Research of Dual Control in Vertical Landing Aircraft,TP273
  5. Research on Real-Time Performance of Computer Numerical Control System Based on Windows,TG659
  6. The Design of Embedded Image Transmission Terminal Based on the TCP/IP Protocol,TP368.1
  7. ECG Detection Analyzer Based on Windows xp Embedded System,R197.39
  8. Researching and Developing CEMS Data Acquisition and Handling System Based on AT91SAM9263,TP274.2
  9. Embedded real-time operating system ARTs-OS in the TCP / IP protocol stack development,TP316.2
  10. For small robots designed for embedded software development platform,TP368.1
  11. Research and Design of portable smart track detection system,U216.3
  12. The Doors and Windows Research of the Traditional Courtyard Architecture in Peking,TU228
  13. Biological multiple sequence alignment study algorithm,Q7-3
  14. Study of Power Communication Management Machine Based on uClinux,TM76
  15. Research on Key Technologies of Real-Time Connecting in Distributed Battle Simulation Systems,E919
  16. Design and Development about Embeded Electronic Medical Record Writing System Based on XML,TP311.52
  17. Software Design of Mobile Telephone Streaming Media Real-time Image Browsing Client Based on Mobile,TN919.8
  18. The Development of Portable Gamma Spectrometer Application Software Based on ARM11,TL817.2
  19. Design and Development of DCS System Management Program,TP273
  20. Design and Implementation of PIC-based Embedded Remote Monitoring System,TP277
  21. Study of Embedded Two-degree-of-freedom PID Controller,TP18

CLC: > Industrial Technology > Automation technology,computer technology > Computing technology,computer technology > Computer software > Program design,software engineering > Software Engineering > Software Development
© 2012 www.DissertationTopic.Net  Mobile