| 一种混合入侵检测系统的设计与研究 |
| |
| 引用本文: | 徐小梅,张忠林,马海云.一种混合入侵检测系统的设计与研究[J].兰州铁道学院学报,2007,26(4):109-112. |
| |
| 作者姓名: | 徐小梅 张忠林 马海云 |
| |
| 作者单位: | 兰州交通大学电子与信息工程学院 甘肃兰州730070 |
| |
| 摘 要: | 入侵检测系统(IDS)成为目前动态安全工具的主要研究和开发方向.异常检测和误用检测是应用在IDS中的两种主要技术.把应用在异常检测中的Markov链模型和误用检测中的模式匹配结合起来,同时采用分组交换检测机制,一定程度上降低了IDS的误报率和漏报率,提高了系统的检测速度.而且数据挖掘技术的引入,使系统具有了自动化能力.
|
| 关 键 词: | 入侵检测 数据挖掘 Markov链 模式匹配 |
| 文章编号: | 1001-4373(2007)04-0109-04 |
| 修稿时间: | 2007-03-09 |
Design and Study of A Hybrid Intrusion Detection System |
| |
| Xu Xiaomei,Zhang Zhonglin,Ma Haiyun.Design and Study of A Hybrid Intrusion Detection System[J].Journal of Lanzhou Railway University,2007,26(4):109-112. |
| |
| Authors: | Xu Xiaomei Zhang Zhonglin Ma Haiyun |
| |
| Institution: | School of Electronic and Information Engineering, Lanzhou Jiaotong University, Lanzhou 730070, China |
| |
| Abstract: | At present time Intrusion Detection System(IDS) becomes the main research and development in the dynamic safe tool.Anomaly Detection and Misuse Detection are two kinds of the main technique that are applied in IDS.This paper integrates Markov chain applied in Anomaly Detection with Pattern matching applied in Misuse Detection and adopts grouping and exchanging detection.To a certain extent they reduce the false positive rate and the false negative rate and improve the detection speed of IDS.And data mining presented in this paper is applied in the IDS to make the system automate. |
| |
| Keywords: | Intrusion Detection System(IDS) data mining Markov chain pattern matching |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
