| 动态自学习的高效入侵检测模型研究 |
| |
| 引用本文: | 杨 武,张 冰,周 渊,王 巍.动态自学习的高效入侵检测模型研究[J].通信学报,2007,28(12):33-38. |
| |
| 作者姓名: | 杨 武 张 冰 周 渊 王 巍 |
| |
| 作者单位: | 1. 哈尔滨工程大学,信息安全研究中心,黑龙江,哈尔滨,150001
2. 国家计算机网络应急技术处理协调中心,北京,100029 |
| |
| 基金项目: | 国家重点基础研究发展计划(973计划);国家242信息安全计划 |
| |
| 摘 要: | 提出了一种基于归纳推理的动态自学习的高效入侵检测模型。将归纳推理方法应用到入侵检测中,提出了适用于入侵检测的增量学习推理算法。通过该算法建立的入侵检测模型能够对不断出现的新的网络行为数据进行自学习,并动态修正模型的行为轮廓,从而克服了传统静态检测模型必须完全重新学习才能更新模型甚至无法重新学习的缺陷,同时较大地提高了入侵检测模型的学习效率和检测效率。
|
| 关 键 词: | 网络安全 入侵检测 异常检测 归纳推理 自学习算法 |
| 文章编号: | 1000-436X(2007)12-0033-06 |
| 收稿时间: | 2007-09-22 |
| 修稿时间: | 2007-11-13 |
Research on a dynamic self-learning efficient intrusion detection model |
| |
| YANG Wu,ZHANG Bing,ZHOU Yuan,WANG Wei.Research on a dynamic self-learning efficient intrusion detection model[J].Journal on Communications,2007,28(12):33-38. |
| |
| Authors: | YANG Wu ZHANG Bing ZHOU Yuan WANG Wei |
| |
| Abstract: | A dynamic self-learning efficient intrusion detection model was proposed based on inductive reasoning. Applying the method of inductive reasoning into intrusion detection, an incremental inductive reasoning algorithm for intrusion detection was proposed. This model produced by this algorithm can make self-learning over the ever-emerged new network behavior examples and dynamically modify behavior profile of the model, which overcomes the disadva-ntage that the traditional static detecting model must relearn Over all the old and new examples, even can not relearn because of limited memory size. And at the same time, the learning efficiency and detecting efficiency of intrusion detection model are improved greatly. |
| |
| Keywords: | network security intrusion detection anomaly detection inductive reasoning self-learning algorithm |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《通信学报》浏览原始摘要信息 |
|
点击此处可从《通信学报》下载全文 |
