%0 Journal Article
%T Honeynet-based network security defense model<br>一种基于蜜网的网络安全防御技术*
%A WANG Tie-fang
%A LI Yun-wen
%A YE Bao-sheng
%A YANG Yi
%A LV Yuan
%A ZHU Li-shang
%A <br>王铁方
%A 李云文
%A 叶宝生
%A 杨屹
%A 律原
%A 诸立尚
%J 计算机应用研究
%D 2009
%I 
%X Though honeynet, which is based on an active defense, has overcome some of the shortcomings of traditional techniques, invaders can still attack the inner and outer networks through Honeynet, so there are still many insecure factors in honeynet. This paper proposed an active defense technology based on honeynet. Using DMZ (demilitarized zone) and two firewalls to prevent the inner network from being invaded, and using NIDS(network intrusion detection system) and flow control to prevent the outer network from being attacked. By this means, solved many problems both in the traditional network security model and honeynet.
%K honeynet
%K honeypot
%K firewall
%K intrusion detection<br>蜜网
%K 蜜罐
%K 防火墙
%K 入侵检测
%U http://www.alljournals.cn/get_abstract_url.aspx?pcid=5B3AB970F71A803DEACDC0559115BFCF0A068CD97DD29835&cid=8240383F08CE46C8B05036380D75B607&jid=A9D9BE08CDC44144BE8B5685705D3AED&aid=27D9B77419F43D38699FFCF231719EED&yid=DE12191FBD62783C&vid=96C778EE049EE47D&iid=5D311CA918CA9A03&sid=30237B193729CC5C&eid=A2A361E8179A54A7&journal_id=1001-3695&journal_name=计算机应用研究&referenced_num=0&reference_num=7