摘要
随着计算机和Internet应用领域的不断扩大和深入,网络恶意代码给网络系统带来了极大的危害,尤其是僵尸网络、木马和蠕虫,严重危害用户信息安全、账户安全、资金安全,影响用户正常上网.通过僵木蠕检测系统,运营商可以通过实时监控网络出口流量,实现恶意样本和疑似样本的监测、识别和告警处置,并将相关信息上报至统一管理平台.同时僵木蠕检测系统可接收集团和通信管理局下发的指令,与统一 DPI联动,可实现互联网反诈功能、涉诈网站预警页面跳转重定向功能.提高了网络安全威胁监测与处置的及时性、准确性和有效性,提升了网络安全公共服务能力.
Abstract
With the continuous expansion and deepening of computer and Internet application fields,network malicious code has brought great harm to network systems,especially zombie networks,Trojans,and worms,seriously endangering user information security,account securi-ty,and fund security,and affecting the normal internet access of users.Through the zombie worm detection system,operators can monitor network exit traffic in real-time,achieve the mo-nitoring,identification,and alarm disposal of malicious and suspected samples,and report rele-vant information to a unified management platform.At the same time,the deadwood worm de-tection system can receive the instructions issued by the Group and the Communications Admin-istration,and link with the unified DPI to realize the Internet anti fraud function and the jump redirection function of the fraud related website early warning page.Improved the timeliness,accuracy,and effectiveness of network security threat monitoring and disposal,and enhanced the capacity of network security public services.
NETL
NSTL
万方数据