Безопасность информационных технологий (Mar 2018)
Development Intrusion Prevention System by Using Parallel Programming and Fault Tolerance Technology
Abstract
One of the first threats that prompted the creation of intrusion prevention systems is considered to be the "Morris worm", which hit computers in late 1988. Intrusion prevention systems evolved, and eventually became a full-fledged system incorporating special proactive methods to prevent attacks, designed to protect against various kinds of threats. Among the proactive intrusion prevention systems are the following: a behavioral process analyzer for analyzing the behavior of processes running in the system, eliminating the possibility of infection on the computer, locking the ports, blocking the DoS attacks. In article the developed system of prevention of invasions is described. It is more effective to develop and use the systems of prevention of invasions as separate means of protection which will serve as the intermediary between the protected and opened networks. It is more expedient to organize prevention of the attacks at the level of concrete knot, by control of all system calls. Special attention in article is paid to use of technologies of parallel programming in the developed system. The main advantages of system of fault tolerance and the used algorithms for realization of technology of prevention of invasions are described.
Keywords