中文摘要：

面对复杂多变的网络环境，传统的入侵检测方法只会被动地响应入侵行为，无法检测到动态、随机攻击，存在较大的缺陷。为了提高网络安全性能，设计并实现基于HoneyGate入侵诱控监测数字化网络平台，该平台由封包采集、欺骗网络、欺骗主机以及动态配置等模块构成。通过WinPcap封包截获模块采集数据链路包，实现入侵行为的ARP欺骗。采用树形数据结构塑造欺骗网络模块中的虚拟路由，完成入侵行为的网络级诱骗功能。融合主动探测与被动探测的动态配置方法，处理内部网络状态波动，对网络配置进行及时更新，增强网络适应性。实验结果表明，所设计网络平台可有效地诱骗入侵者，控制入侵行为，维护网络安全。

英文摘要：

In view of the complex network environment, the traditional intrusion detection method only responds to the intrusion behavior passively, and also exists some great defects that it can＇t detect the dynamic and random attack. In order to improve the network security performance, the HoneyGate-based digital network platform monitored with invasion deception and control was design and implemented. The platform is composed of packet acquisition, cheat network, cheat host, dynamic configuration and other modules. The WinPcap packet capture module is used to gather the data link package to realize ARP decepion of intrusion behavior. The tree-form data structure is used to construct the virtual routing in deception network module to accomplish the network-level deception function against intrusion behavior. The dynamic configuration method of fusing active detection and passive detection is adopted to deal with the fluctuation of the internal network state, update the network configuration timely, and enhance the network adaptability. The experimental results indicate that the designed network platform can lure the intruder effectively, control its intrusion behavior, and maintain the network security.