网络信息审计系统的设计与实现

发布时间：2018-03-10 20:38

本文选题：网络信息审计　切入点：抓包引擎模块　出处：《西安电子科技大学》2015年硕士论文　论文类型：学位论文

【摘要】：二十一世纪,互联网正在飞速发展,它在一步步改变着人们的生活,为人们带来了很多便利。工作中,人们利用互联网办公,处理工作遇到的问题,这提高了人们的工作效率;生活中,人们利用网络购物,观看视频,查阅信息等等,方便了我们的生活。工作中,生活中,人们都在使用着网络,可以说,离开了网络,人们的工作、生活将变得异常困难。然而,网络快速发展的同时也带来一些问题。淫秽色情反动内容在互联网上的泛滥,企业技术资料商业机密泄露,员工上班时间从事与工作无关的网络娱乐活动导致工作效率低下,带宽总是不够用导致正常业务无法开展。问题的陆续出现,网络安全相关问题开始引起了人们的重视。网络安全问题的产生,给企业、国家造成了重大的经济损失。然而,市场上并没有一款理想的产品去很好解决上述的相关问题。本论文设计实现了一套对内容、行为以及安全进行审计的系统,很好的解决了这些安全问题。网络信息审计系统是在参考捷普信息审计系统、深信服上网行为管理、华语唐风信息审计而进行设计实现的。捷普信息审计系统主要是针对少部分网络行为和邮件、文件传输等协议内容进行信息审计的系统;深信服上网行为管理是深信服公司开发的一套对网络行为进行审计和管理的系统,其特色是对行为的审计比较细粒;华语唐风信息审计同样是为进行网络信息审计而开发的系统,报表形式多样化是其一大特点。首先,本论文介绍了论文选题背景和意义,分析了网络信息审计在国内外的发展现状,描述了论文的内容和组织结构;其次对论文应用的相关技术进行了介绍,相关技术包括URL匹配原理、DPDK抓包技术以及数据库加密审计技术;再次,对系统进行了需求分析,其主要内容包括:系统业务的陈述,系统功能需求分析和系统非功能性需求,其中,功能模块包括抓包引擎模块、内容审计模块、行为审计模块和安全审计模块;再次,在需求确立的基础上,给出了系统整体设计方案,并介绍了主要功能模块的设计与实现,最后,对系统进行了集成与测试,并对测试结果进行了详细的说明。本系统在信息审计平台上验证了系统的各项基本功能。经测试结果表明,系统采用抓包、分析方案可行。系统各项基本功能验证正确、性能较好、稳定性高,网络信息审计开发成功。本系统完善了市场上对信息审计的各项需求,为信息安全提供了一份有力的保证。
[Abstract]:In 21th century, the Internet is developing rapidly, it is changing people's life step by step, has brought a lot of convenience for people. In the work, people use the Internet to work, deal with the problems encountered in the work, this has improved the working efficiency of people; In life, people use the Internet to shop, watch videos, check information, and so on, to facilitate our life. At work, in life, people are using the network, it can be said, without the network, people's work, Life will be extremely difficult. However, the rapid development of the Internet also brings some problems. The proliferation of pornographic and reactionary content on the Internet, the disclosure of business secrets of enterprise technical information, Employees engaged in non-work-related network entertainment activities during working hours lead to inefficient work, lack of bandwidth always lead to normal business unable to carry out. The problems related to network security have begun to attract people's attention. The emergence of network security problems has caused great economic losses to enterprises and countries. However, There is no ideal product in the market to solve the above problems. This paper designs and implements a set of audit system for content, behavior and safety. The network information audit system is referring to the Jepp information audit system, deeply convinced of the behavior management of the Internet. The Jepu Information Audit system is designed and implemented for a small part of the network behavior, mail, file transfer and other protocol content information audit system; Deeply convinced online behavior management is a set of network behavior audit and management system developed by deeply convinced company, its characteristic is that the audit of behavior is relatively fine; Chinese Tang Feng Information Audit is also a system developed for the purpose of network information audit, and the diversification of report forms is one of its characteristics. Firstly, this paper introduces the background and significance of the selected topic of this paper. This paper analyzes the development of network information audit at home and abroad, describes the content and organizational structure of the paper. Related technologies include URL matching principle DPDK packet capture technology and database encryption audit technology. Thirdly, the requirements of the system are analyzed. The main contents include: system business statements, system functional requirements analysis and system non-functional requirements. Among them, the function module includes capture package engine module, content audit module, behavior audit module and security audit module. The design and implementation of the main functional modules are introduced. Finally, the system is integrated and tested. The test results are explained in detail. The system verifies the basic functions of the system on the information audit platform. The test results show that the system adopts grasping packets, the analysis scheme is feasible, and the basic functions of the system are verified correctly. The system improves the requirements of information audit in the market and provides a strong guarantee for information security.
【学位授予单位】：西安电子科技大学
【学位级别】：硕士
【学位授予年份】：2015
【分类号】：TP393.08

【参考文献】