摘要 |
A method for encoding a security policy and an IDS(Intrusion Detection System) implementing the same are provided to strengthen security by preventing desired contents from being caught until security policy data is decoded even if an unauthorized user passes manager authentication of a security policy database, as a core part of the updated security policy is encoded and stored. An updating module(201) downloads the new security policy data from a security policy update server. An encoding module(203) encodes a specific item of the downloaded new security policy data. A managing module(205) stores/manages a security policy database and updates the security policy database by receiving the encoded security policy data. A decoding module(207) decodes the security policy data extracted through the managing module. A detecting module(209) checks traffic inputted to the system by receiving the security policy data from the decoding module and blocks the attacking traffic.
|