| ID | 原文 | 译文 |
| 44546 | 首先就现有的网络空间搜索引擎存在的误判及漏判进行了讨论。 | The paper first discusses the misjudgment and missed judgment of the existing cyberspace search engine. |
| 44547 | 在此基础上,提出了基于自行开发的通用基础服务器检测平台 SRDS 建立了 CERNET 基础服务器库,可以准确定位 CERNET 中的 Web、DNS、mail 和 NTP这 4 种基础服务器。 | On this basis, based on a self-developed general-purpose basic server detection platform SRDS, the CERNET common server data-base is established, which can accurately detect the four common servers of Web, DNS, mail and NTP in CERNET. |
| 44548 | 通过对检测过程获取的信息进行分析,给出了 10 种异常检测条件。 | Ten kinds of abnormal detection conditions are given by analyzing the information obtained during the detection process. |
| 44549 | 最后展示的校园网实测案例表明了相关工作的有效性和实用性。 | The last demonstrated case of the campus network shows the effectiveness and practicality of the relevant work. |
| 44550 | 在 IDS 中,传统数据分组的捕获是从网卡复制到内核,再由内核复制到用户空间,这导致了 CPU 频繁地中断响应、冗余数据复制和上下文切换, | In IDS, the traditional methods of packet captures are that packets are copied from the network card to the kernel and then they are copied to the user space, which results in frequent CPU interrupt response, redundant data replication, and context switching. |
| 44551 | 没有充足时间来进行数据分组的进一步处理。 | Then the system haven't sufficient time for further packet processing, which results in reducing performance. |
| 44552 | 为了提升捕获包效率,采用多线程思想,通过 PF_RING ZC 技术实现零拷贝,把 PF_RING ZC 捕获数据分组的方法做成动态链接库,并集成到 Snort 中; | In order to improve the efficiency of capturing packets, Zero-copy technology, based on the architecture of multi-thread which was implemented by PF_RING ZC method, and the method of packets capture is made into a dynamic link library and integrated into Snort. |
| 44553 | 对捕获技术进行 IPv6 协议扩充,使 IDS 实现了支持 IPv6 检测的功能。 | For implementing detection IPv6 packet in IDS, the expanded capture technology of IPv6 protocol was proposed. |
| 44554 | 实验表明,相比 libpcap技术,PF_RING ZC 技术在高速和低速网络环境中有着更低的丢包率和 CPU 占用率。 | The result of experiments shows that, compared with the method libpcap of packet capture, PF_RING ZC method has lower packet loss rate and lower CPU utilization rate in both high-speed and low-speed network environments. |
| 44555 | 分析了目前 DNS 隧道检测各种方法,重点研究基于机器学习技术的 DNS 隧道分类方法,针对目前 DNS隧道检测只局限于特定隧道类别进行判别的不足,提出了采用多种分类算法进行组合分类决策的混合分类算法模型(CCAM)对 DNS 隧道进行检测与分类,CCAM 算法采用了支持向量机(SVM)、朴素贝叶斯(NB)、决策树(DT)等 3 种机器学习分类算法进行混合分类、组合训练与加权求优。 | To propose a high precision detection method for DNS channel, different techniques for DNS tunneling detection were surveyed, the machine learning techniques based detection for DNS tunneling was researched, the existing problems of the current DNS tunneling detection based of specific tunneling classification was analyzed, combined classification algorithm model (CCAM) was introduced to classify DNS tunneling, CCAM uses SVM,NB and DT. |