|
|||||
|
|
| 一种改进的基于系统调用的入侵检测技术 | |
| 引用本文: | 李千目,戚勇,刘凤玉. 一种改进的基于系统调用的入侵检测技术[J]. 小型微型计算机系统, 2004, 25(7): 1348-1351 |
| 作者姓名: | 李千目 戚勇 刘凤玉 |
| 作者单位: | 南京理工大学,计算机科学与技术系,江苏,南京,210094 |
| 基金项目: | 国家自然科学基金资助项目(69973020)资助;国防科工委应用基础基金资助项目(J1300D004)资助. |
| 摘 要: | 随着恶意入侵计算机现象的日益严重 ,准确检测入侵的需求应运而生 .本文提出一种基于系统调用的入侵检测方法—— SGNN算法 .该算法解决了传统基于系统调用入侵检测方法的缺陷 ,不仅去除了降低检测效率的规则 ,同时能有效识别用户的误操作 .实验结果体现了该方法的有效性和检测的高效性 |
| 关 键 词: | 入侵检测 系统调用 异常检测 |
| 文章编号: | 1000-1220(2004)07-1348-04 |
New Intrusion Detection Thehnology Based on System Calls |
|
| LI Qian mu,QI Yong,LIU Feng yu. New Intrusion Detection Thehnology Based on System Calls[J]. Mini-micro Systems, 2004, 25(7): 1348-1351 | |
| Authors: | LI Qian mu QI Yong LIU Feng yu |
| Abstract: | As malicious intrusions into computer system have become a growing problem, the need for accurately detecting these intrusions has risen. This paper proposed a novel approach to detecting intrusions by using system call method. The problems of old intrusion detection technology based on systems calls have been solved by SGNN algorithm. The rules that have affected the efficiency of intrusion detection will be deleted. Simultaneity, SGNN is good for recognizing the mistakes of users. The experiments show that the proposed method is practical and efficient. |
| Keywords: | intrusion detection system call abnormal detection |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! | |