使用虛擬技術實作入侵預防系統之研究

Abstract

隨著網路的興盛發展，對於網路資訊的需求量越來越大，但也相對地增加了使用上的風險。許多的資訊設備價格都不低，大多數人所使用的資訊安全設備是具備有基本防火牆功能的路由器，但並非可以有效的阻擋惡意入侵的行為。

本研究運用開放源碼的程式加上虛擬化的觀念，構建出一套虛擬入侵防護系統，利用封包過濾與主動回應的機制來達到封鎖入侵的行為，希望能以最少的成本建構有效的入侵預防系統。

As the development of network leads to the growing demand on network information, the risk of use is also increasing. While much IT equipment is not cheap, most people only use security devices with a basic firewall function. However, it does not suffice to block malicious intrusion effectively.

In this study, open source software with the concept of virtualization is adopted to build a virtual intrusion prevention system, which applies packet filtering and an active response mechanism to block the intrusion. It is hoped that an effective intrusion prevention system with the least cost can thus be built.