• 研究论文 • 上一篇    下一篇



  1. (西安电子科技大学 综合业务网理论及关键技术国家重点实验室,陕西 西安 710071)

  • 收稿日期:1900-01-01 修回日期:1900-01-01 出版日期:2005-04-20 发布日期:2005-04-20

Design and realization of an NIDS benchmark test system

YAO Lan;WANG Xin-mei


  1. (State Key Lab. of Integrated Service Networks, Xidian Univ., Xi'an 710071, China)
  • Received:1900-01-01 Revised:1900-01-01 Online:2005-04-20 Published:2005-04-20

摘要: 详细探讨了一种NIDS基准测试系统.通过全新设计的网络攻击描述语言NADL1.0,对各种网络攻击进行统一规范的描述,生成测试脚本库;基于一体化的体系结构,模拟攻击机、牺牲主机和背景流量产生器,实现各种网络攻击会话的真实复现及其与背景流量的混合发送.

关键词: 入侵检测系统, 基准测试, 网络攻击描述语言, 一体化结构, 背景流量

Abstract: This paper discusses in detail, the benchmark test system for network-based intrusion detection systems(NIDS) we developed. The system designs a new network attack description language called NADL1.0 which can describe all the network attack activities in a unified way to form the database of test scripts. Furthermore, the system simulates the attacking host, sacrificed host and background traffic host based on the synthesized architecture to realize the real creation of attacking sessions and its fusion sending with background traffics.

Key words: intrusion detection system, benchmark test, network attack description language, synthesized architecture, background traffic


  • TP309