WANG Xiaodong,ZHU Miaoliang

DOI: https://doi.org/10.3969/j.issn.1000-3428.2005.07.055

2005-01-01

Abstract:This paper puts forward an intellective network safe guard system based on a multi-agent system structure. The purpose of the system is to defend the intrusion of campus-wide network. It is based on IDXP and the focus is blackboard. This system can deal with multi-levels and many ways of anti-intrusions, which has self-determination. It is proved to have a good performance by spot tests.

丁宇波,陈根才

DOI: https://doi.org/10.3969/j.issn.1000-3428.2003.03.052

2003-01-01

Abstract:The rule in CERNET that user's feedepends on data flow, which brings difficulty to campus network management. The technology used to avoid network e mbezzlement and user account in campus network has defects and its effect is n ot ideal. This paper puts forward new design, which has good balance in perform anc e, security and cost facts.

Zhijun Zhang

2011-01-01

Abstract:As the use of distributed deployment of a large number of heterogeneous security devices in order to build network security defense system generates a mass of security event information which is difficult to effectively manage and the security monitoring systems that are deployed in different places are difficult to manage integratedly, united platform model for network security management is proposed. According to the actual distribution of Yunnan security monitoring systems, the platform establish a level of information system by the use of distributed technology. Platform designs and analyzes its oriented network security managers system architecture and uses risk assessment and event correlation to analyze network operating conditions in real-time, reduce false alarm ratio so that network security managers can find security accidents precisely and respond promptly. And then the paper describes key technologies such as distributed data model,secure event standardization model,secure communication and control protocol in detail.

N. Priya,C. Dr.Rajabhushanam,Thota Shiva Sai Krishna

DOI: https://doi.org/10.29333/EJAC/2018238

2019-11-26

Abstract:: Security has been an essential issue within the style in readying of an enterprise network. A campus network is a very important part of campus life and network security is crucial for a campus network. Secured network protects an establishment from security attacks related to network. A university network includes a range of uses like teaching, learning, research, management, e-library, result publication. Network security can stop the university network from differing kinds of threats and attacks. The theoretical contribution of this study may be a reference model design of the university campus network that may be pre-designed or custom-made to make strong, however versatile network that the successive generation needs.

Engineering,Computer Science

Xuanpeng Wang,Shengwen Zhang

DOI: https://doi.org/10.1016/j.proeng.2011.08.335

2011-01-01

Procedia Engineering

Abstract:As the infrastructure for the informationization of the university, campus network plays a pivotal role in the area of teaching, research, management and so on. To make the campus network more secure and stable, universities usually invest large sums of money to purchase a large number of security devices and software in order to deploy campus network. The security devices and software are mainly used to defend external attacks, ignoring the protection and control of internal network security. While the use of these security hardware and software are often used as a simple pile, with no connection with each other, and do not form an integrated defense system. So that the large investment can not play a role in the security. This article intends to introduce a global network security, ideas, and form an integrated defense system, to handle the problems of network security issues.

Mohammed Nadir Bin Ali,M. Lutfar Rahman,Syed Akhter Hossain

DOI: https://doi.org/10.1109/icccnt.2013.6726595

2013-07-01

Abstract:Network architecture with its security is a growing concern in the present time. A campus network faces challenges to address core issues of security which are governed by network architecture. This paper is mainly targeted towards campus networks which deliver required security. This is essential because, it prevents the institution from suffering any significant attacks associated with network. A university network has a number of uses such as teaching, learning, research, management, e-library, and connections with the external uses. Therefore, network architecture and its security are vital issues for any university. In this work, a network infrastructure is proposed on the basis of the practical and experimental requirements. The proposed network infrastructure is realizable with adaptable infrastructure.

DOI: https://doi.org/10.1007/s00500-023-08115-x

IF: 3.732

2023-04-08

Soft Computing

Abstract:The continuous progress of society has created conditions for the widespread use of information technology. People rely more and more on information technology and the Internet. People can use the Internet to retrieve relevant information to meet their work needs, but the widespread use of the Internet is also accompanied by network security issues. The existence of network security problems will affect people's work to varying degrees. Network security management departments use intrusion detection technology and set firewalls to improve the security of people's personal information on the Internet and prevent viruses and some criminals from stealing people's important information through the Internet, causing adverse effects on the Internet environment. In the daily management of the school, the extensive use of the campus network can not only facilitate students' daily study and life, but also improve the efficiency of school management. Ensuring the network security of campus network is an important work to ensure the campus management and students' study and life. The four parts of network security work include setting firewall, encrypting cloud data, using intrusion detection technology, and recovering data. Intrusion detection technology is extremely important for the development of network security work, which can help people actively find vulnerabilities in networks and systems, identify possible behaviors that may invade systems and networks, and give early warning or automatically close intrusion channels. There are various types of cloud data, so cloud database plays an extremely important role in the development of various fields. This paper uses intrusion detection algorithms to design the campus network security protection system, which provides security for the use of the campus network.

computer science, artificial intelligence, interdisciplinary applications

Cuihong Wu

DOI: https://doi.org/10.1109/indusis.2010.5565862

2010-07-01

Abstract:In the Age of Information, network education pays more attention to the application of IT technology and the training of talents, which makes learning more of customization and of opening up. In order to better enable learners to go beyond the limitations of space and time to acquire knowledge; in order to provide excellent learning environment for greater freedom and greater choice of learning activities space, the project to building campus network has become the basis of all university building work. It is directly related to the quality and level of their teaching and scientific research work. The campus network has a number of tasks such as teaching, research, management and communication with the outside. Therefore, the issue of network security has become a priority to campus network management. Obviously, the current Internet is convenient but at the same time it is unsafe. As part of the Internet and the unique attributes of campus network, it is more easily attacked when enjoying the service provided by the Internet. This paper starts from the current security status of the campus network, analyzing threatens to campus network security and strategies to maintenance of network security, so as to establish a suitable campus network security system, and introduce some current popular campus network information security solutions.

Changyi Wang,Zhuo Zhang,Xianhua Song

DOI: https://doi.org/10.1007/978-3-642-30223-7_35

2012-01-01

Abstract:With the rapid development of network technology, the network security has gained more and more attention. The modern university campus network is an open network environment, and many users are using the internal network to achieve office automation and resource sharing, so that the security of the intranet information becomes increasingly important. This paper analyzes and studies the security issues faced by current campus network as well as the firewall technology, data encryption technology, intrusion detection technology, anti-virus technology, VLAN technology and other security technologies that can solve the issues.

顾国飞,沈建莉,王鹏,张世永

DOI: https://doi.org/10.3969/j.issn.1000-3428.2002.z1.060

2002-01-01

Abstract:Campus network security is an important problem now, and it comprises many different security levels. This paper presents a six-layer network security architecture, which consists of physical security, link security, network level security, information security, application security and user security. Then a multi-layer, comprehensive and distributed campus network security solution is presented based on it. This solution covers comprehensive aspects from low level to high level, from static passive prevention to dynamic active prevention ,from before ,between to after the intrusion ,from system to desktop and from host to network. It can give max security to the campus network and can also be used in other kind of LANs.

HUANG Jia-Lin,Liu Hai-Tao,Mei Zhen-Kun,Gan Miao-Jin,Sun Qian

2008-01-01

Periodical of Ocean University of China

Abstract:The management of a large campus network is complex and difficult.An effective network management system is basical for secure and steady network.The current network management systems focus on the management of the equipment,they have not related network management to the network user behavior.The System Based on User Network Behavior Monitoring and Controlling amalgamated the technical character of various system manufacturer.Because of making use of the functions and the management messages of the present network equipments and systems,analyzing and ruling the user's network behavior,and eliminating the effect of the bad network behavior,it can maintain a secure and steady network and reduce the network manager's workload.

Xinming Chen,Beipeng Mu,Zhen Chen

DOI: https://doi.org/10.1109/cmc.2011.94

2011-01-01

Abstract:Malicious attacks are frequently launched to make specified network service unavailable, compromising end hosts for political or business purpose. Though network security appliances are widely deployed to resist these attacks, there is a lack of dynamic and collaborative platform to flexibly configure and manage all the security elements. In this paper, we present NetSecu, a platform based on Java and Click Router, which can dynamically enable, disable and configure security elements such as firewall, IPS and AV. Furthermore, a collaborate module is implemented to integrate individual NetSecu platform into a Secure Overlay Network, providing collaborative traffic control against DDoS attack. Equipped with collaborate module, NetSecu platforms are organized in a tree hierarchy where each level node is registered to its father node. A Central Management Site acts as the root node for large scale deployment. The policy is distributed from higher level to lower level NetSecu nodes, while security events are aggregated from lower level to higher level. Performance evaluation shows that our NetSecu system can achieve line rate with and without security function. Finally we deploy the NetSecu platform in multiple sites, where our design is fully demonstrated and tested.

Yongli Liu,Weifang Zhai,Song Ji

DOI: https://doi.org/10.4018/978-1-7998-7705-9.ch060

2021-01-01

Abstract:With the “Internet +” era of arrival, the major colleges and universities are in the construction of the wisdom of the campus, students and teachers living with the campus network is more and more closely related, Campus network security has become the protection of the wisdom of the campus construction. Campus network security issues become increasingly serious; a single security protection has been unable to meet the current security needs. This paper analyzes the major security threats facing the campus network, and presents the campus network security protection measures from the physical layer, network layer, system layer, application layer and management of five aspects, thus constructing the campus network's overall security defense system. The system has multiple security protection for Campus Network, thus improving the security of the campus network.

ZHOU Chang-ling,CUI Jian,SHANG Qun,ZHANG Bei

DOI: https://doi.org/10.3969/j.issn.1672-9781.2007.02.008

2007-01-01

Abstract:In order to improve the campus network management efficiency, whenever a security event occurs, network operators can easily trace those users who abused the network or did illegal things, auto-logging campus network user information and relate things are required. This paper presents a way combining the IP, MAC, user profile, switch port data to trace user location. A system using this method is designed and implemented in our campus network that shows our solution is valuable.

阎浩,张燕,严筱永

DOI: https://doi.org/10.3969/j.issn.1006-2475.2010.01.037

2010-01-01

Abstract:The traditional campus network system uses firewall and some access control policies to ensure its security,the network of this model just can prevent the danger from external,but can not effectively guard against the internal hidden security flaws,therefore,improving the internal security is an important link for secirity of the whole campus network.This paper analyzes the principle and characteristic of trusted network,applies the trusted network into the campus network,puts forward a new campus network system based on the authentication technology,at the same time,also describes its structure and elements,and gives the network topology diagram,finally analyzes the priciple of security mechanism and the specific methods for achieving this.

Rui Chang,Liehui Jiang,Wenzhi Chen,Yaobin Xie,Zhongyong Lu

DOI: https://doi.org/10.23919/tst.2017.8030534

2017-01-01

Tsinghua Science & Technology

Abstract:The run-time security guarantee is a hotspot in current cyberspace security research, especially on embedded terminals, such as smart hardware as well as wearable and mobile devices. Typically, these devices use universal hardware and software to connect with public networks via the Internet, and are probably open to security threats from Trojan viruses and other malware. As a result, the security of sensitive personal data is threatened and economic interests in the industry are compromised. To address the run-time security problems efficiently, first, a TrustEnclave-based secure architecture is proposed, and the trusted execution environment is constructed by hardware isolation technology. Then the prototype system is implemented on real TrustZone-enabled hardware devices. Finally, both analytical and experimental evaluations are provided. The experimental results demonstrate the effectiveness and feasibility of the proposed security scheme.

Guangfeng Guo,Junxing Zhang,Zhanfei Ma

DOI: https://doi.org/10.2298/csis200206049g

2021-01-01

Computer Science and Information Systems

Abstract:As traditional networks, the software-defined campus network also suffers from intrusion attacks. Current solutions for intrusion prevention cannot meet the requirements of the campus network. Existing methods of attack traceback are either limited to specific protocols or incur high overhead. To protect the data center (DC) of the campus network from internal and external attacks, we propose an Intrusion Prevention System (IPS) based on the coordinated control between the detection engine, the attack traceback agent, and the software-defined control plane. Our solution includes a novel algorithm to infer the best switch port for defending different attacks of varied scales based on the inverse HSA (Header Space Analysis) and the global view of the software-defined controller. The proposed scheme can effectively and timely block the malicious traffic not only protecting victim hosts from attacks but also preventing the whole network from suffering unwanted transmission burden. The proposed IPS is deployed on the bypass of the DC switch and collects network traffic by port mirroring. Compared with the traditional serial deployment, the new design helps defend the DC internal attacks, reduce the probability of network congestion, and avoid the single point of failure. The experimental results show that the overhead of our IPS is very low, which enables it to meet the real-time requirements. The average defense time is between 10 and 14 ms for the data center internal attacks of different scales. For external attacks, the maximum defense time is about 76 ms for a large-scale network with 100 switches.

computer science, information systems, software engineering

E. T. Tchao,Richard Y. Ansah,Seth D. Djane

DOI: https://doi.org/10.48550/arXiv.1710.08795

2017-10-23

Computers and Society

Abstract:The adoption of Bring Your Own Device (BYOD), also known as Bring Your Own Technology (BYOT), Bring Your Own Phone (BYOP), or Bring Your Own Personal Computer (BYOPC), is a policy which allows people access to privileged resources, information and services available on the private computer network of an organization using their own personal computer devices. BYOD, since its emergence in 2009, courtesy of Intel, is now a common practice in many organizations. Academic institutions that attempt to implement BYOD, can derive many benefits as well as many risks to its network infrastructure, largely security-based. This paper presents an assessment of a WLAN network which has been deployed for a campus-wide data centric e-learning platform at Kwame Nkrumah University of Science and Technology (KNUST) towards the overall objective of achieving a barrier free internet access to enhance the teaching and learning process at the university. The paper subsequently evaluates the WLAN infrastructure, its accompanying BYOD set-up, and associated likely security risks and threats, and recommends appropriate solutions.

Li Jin,Li Ya Chen

DOI: https://doi.org/10.1109/icebeg.2011.5882417

2011-05-01

Abstract:With the quick development of computer network, the network scale in school campus has been keeping on expanding. Therefore, security problems of network become a focus of research, a well-operated network management becomes the key issue for a normal and effective school campus network This article mainly analyzes the problems and solutions of the campus E-government network security, studies the security issue and its root in school campus network and mainly probes into the key technique of the school campus network security management system, then we provides the security strategy of network According to the practical situation in our campus, we designs and realizes the school campus security management system.

Deling Ran

DOI: https://doi.org/10.1007/978-3-030-15235-2_79

2019-04-25

Abstract:With the popularization and development of the Internet, the informationization and digital construction of colleges and universities are also accelerating. As an important infrastructure for informationization and digital campus, college campus network plays a role in teaching and research, management and foreign exchange. The important tasks of the school and provide a good guarantee for the education and teaching of the school. The current campus network has spread to all departments of the school and has become the basic equipment of the entire campus. The school has higher and higher requirements for the manageability and security of the network. Therefore, it is particularly important to construct a reasonable network security system. Based on the current problems of college network security, this paper comprehensively expounds the hardware and software design loopholes of campus network security at this stage, and deeply discusses the management flaws and technical problems of campus network security problems. Based on the comprehensive improvement of the security information management level of the campus network and the establishment of a comprehensive campus network security technology system, this paper proposes a comprehensive implementation plan of firewalls and other technologies to comprehensively improve the current campus network security level.