The invention discloses a network hiding method for a computer and a network hiding
system based on the method. In the network hiding method, a passive
processing strategy and an active
processing strategy are adopted. The active
processing strategy comprises the following steps of S1, when a detection behavior is ongoing according to judgment, replying false information to confuse a
detector and increase the attacking difficulty; S2, faking false
data traffic and a real
host network behavior, and disturbing a sniffing behavior; and S3, dynamically and randomly
jumping to hide a real host by taking the IP (
Internet Protocol) address of the real host as a
jumping element. In the network hiding
system, four
layers of network hiding models, including an access
behavior control module, a dynamic multi-address module, a traffic confusing module and a
protocol stack fingerprint confusing module are adopted. Due to the adoption of the method and
system, unknown security problems can be blocked in advance, the occurrence of malicious network behaviors is blocked at a source, and advance protection is truly realized; due to the hiding characteristic, the aim of nipping in the
bud can be fulfilled in the system; and the
computer security is well ensured.