| 基于专家系统的入侵检测技术 |
| |
| 引用本文: | 苏英,苏燕平,敖成龙,刘玉树.基于专家系统的入侵检测技术[J].微机发展,2004,14(6):121-123,F003. |
| |
| 作者姓名: | 苏英 苏燕平 敖成龙 刘玉树 |
| |
| 作者单位: | [1]北京理工大学,北京100081 [2]第四军医大学,陕西西安710032 |
| |
| 基金项目: | 公安部部级重点资助项目(20019181201) |
| |
| 摘 要: | 提出了一种基于专家系统的入侵检测系统基本框架,该系统综合了基于主机和网络的两种结构特点.利用专家系统进行规则匹配技术来实现入侵检测。该技术有利于系统准确、实时地检测出攻击行为,并可给出详细的解释说明信息.而基于规则又具有模块化特征,使得知识容易封装并不断扩充,并且使系统可方便地实现对新的攻击特征的检测。
|
| 关 键 词: | 入侵检测 专家系统 CLIPS |
| 文章编号: | 1005-3751(2004)06-0121-03 |
The Technology of Intrusion Detection Based on Expert System |
| |
| SU Ying.The Technology of Intrusion Detection Based on Expert System[J].Microcomputer Development,2004,14(6):121-123,F003. |
| |
| Authors: | SU Ying |
| |
| Abstract: | A frame of expert system based on intrusion detection system is proposed. The system using the host and network structure applies expert system to match rules. Using the technology, it may detect intrusion accurately and give the detail explanation. The rules based modularization packs and expands knowledge easily, and it can detect the new attack feature. |
| |
| Keywords: | intrusion detection expert system CLIPS |
| 本文献已被 CNKI 维普 等数据库收录! |
