| 实时入侵检测系统的优化问题研究 |
| |
| 引用本文: | 韩仲祥,史浩山,王元一.实时入侵检测系统的优化问题研究[J].计算机工程与应用,2004,40(29):15-17,20. |
| |
| 作者姓名: | 韩仲祥 史浩山 王元一 |
| |
| 作者单位: | 1. 西北工业大学电子信息学院,西安,710072
2. 空军工程大学电讯工程学院,西安,710077 |
| |
| 基金项目: | 国家863高技术研究发展计划项目:宽带无线IP网络安全技术(编号:2002A143020)资助 |
| |
| 摘 要: | 实时入侵检测系统试图检测并响应实时的攻击。当网络中的数据量不大时,普通的IDS系统便可胜任,当网络中出现海量数据(事件)或者遇到过载攻击时,需采用优化处理的方法。文章研究了实时入侵检测系统规则集的选取规则,在此基础上,提出了一种实时入侵检测系统的优化方法,能有效地增强IDS系统在海量数据情况下的入侵检测功能。
|
| 关 键 词: | 入侵检测 规则集 先验概率 优化 |
| 文章编号: | 1002-8331-(2004)29-0015-03 |
Study on Optimization in Real-time Intrusion Detection System |
| |
| Han Zhongxiang,Shi Haoshan,Wang Yuanyi.Study on Optimization in Real-time Intrusion Detection System[J].Computer Engineering and Applications,2004,40(29):15-17,20. |
| |
| Authors: | Han Zhongxiang Shi Haoshan Wang Yuanyi |
| |
| Affiliation: | Han Zhongxiang 1 Shi Haoshan 1 Wang Yuanyi 21 |
| |
| Abstract: | Real-time Intrusion Detection Systems attempt to detect and respond to attacks in real time.Simple IDS is enough when data event doesn't flood in network,but it should use optimization processing method when data event flood.In this paper,an optimization method is provided based on study how to select rule portfolio in real-time intrusion detection system,this method can improve the function for IDS under the condition of flood data. |
| |
| Keywords: | intrusion detection rule portfolio prior probability optimization |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
