论文部分内容阅读
该文提出了一种基于多代理(Agent)技术的容忍入侵体系结构。通过在系统组件中引入一定的冗余度,将冗余和多样性技术相结合,利用门限秘密共享技术将秘密信息分布于多个系统组件上来达到容忍入侵的目的。通过分布在每个服务器上的多个代理,建立一个容忍入侵的安全内核,重要信息通过安全内核来传递,保证系统关键部件为合法用户提供连续和可靠的基本服务。该方案采用系统整体安全策略,将容忍入侵与多代理的入侵检测相结合,使系统具有更好的实用性和可生存性。
This paper presents a tolerant architecture based on multi-agent technology. By introducing a certain degree of redundancy into the system components and combining redundancy and diversity techniques, the threshold secret sharing technique is used to distribute the secret information over multiple system components for the purpose of tolerating intrusion. Through multiple agents distributed on each server, an intrusion-tolerant security kernel is established. Important information is transmitted through the security kernel to ensure that the system’s key components provide the legitimate users with continuous and reliable basic services. The scheme adopts the system overall security strategy, which combines intrusion tolerance and multi-agent intrusion detection to make the system more practical and survivable.