Corporate version of application technology of DrWeb anti-virus packages in scientific institutions Volume 1
- Author:
- Aleksandr M. Terent'ev
- Work direction:
- Авторская монография
- Abstract:
- Original technology of monitoring network packets circulating within local network is described in the article. Technology is based on the dedicated workstation, operating in MS-DOS and getting all available packets. Aggregated data are transmitted to the nearest Windows-PC through serial-connection. Monitoring program on this PC is able to trace infected computers and disconnect them from the local network. This function works due to the Cisco switchboard. The book provides complete information about methods and means of monitoring as well as the description of the pilot version of the program. Technology is exercised as the pilot project in CEMI RAS in 2000 and is successfully used since 2006. The maximum number of users exceeded 200 PCs and servers. The author is awarded the title «Doctor of Philosophy» by EAI (Brussel) for his in-field research in 2003. Monography is recommended to publication by the FSBIS academic Council CEMI RAS.
- Keywords:
- TCP/IP, promiscuous mode, frame, network monitoring, local computing network, network adapter, datagram