| 应用支持向量机实现计算机入侵检测 |
| |
| 引用本文: | 饶鲜,董春曦,杨绍全. 应用支持向量机实现计算机入侵检测[J]. 西安电子科技大学学报(自然科学版), 2003, 30(3): 353-356 |
| |
| 作者姓名: | 饶鲜 董春曦 杨绍全 |
| |
| 作者单位: | 西安电子科技大学电子对抗研究所,西安电子科技大学电子对抗研究所,西安电子科技大学电子对抗研究所 陕西西安 710071,陕西西安 710071,陕西西安 710071 |
| |
| 基金项目: | 十五"预研资助项目(4100104030) |
| |
| 摘 要: | 介绍入侵检测的概况和支持向量机的基本概念和工作原理,提出了应用支持向量机进行异常入侵检测的工作过程,并以程序执行迹为数据源给出了应用支持向量机进行入侵检测的性能.该结果显示出在先验知识,即训练样本数少的条件下,该方法仍能达到较为满意的效果.
|
| 关 键 词: | 入侵检测 支持向量机 计算机安全 先验知识 程序执行迹 |
| 文章编号: | 1001-2400(2003)03-0353-04 |
Detecting intrusions by using support vector machines |
| |
| Authors. Detecting intrusions by using support vector machines[J]. Journal of Xidian University, 2003, 30(3): 353-356 |
| |
| Authors: | Authors |
| |
| Abstract: | The most common technology used in intrusion detection are anomaly detection technology and misuse detection technology, both of which are based on the mass prior knowledge. When given less prior knowledge, the performance of both techniques can not meet our need. Because SVM solves the small samples learning problem well, it will get good performance using SVM in intrusion detection, given less knowledge. A survey of intrusion detection is described and the basic concepts about SVM are introduced. The procedure of detection intrusions using SVM are discussed in detail. Finally, the experiment was performed on system call trace. The result shows that its performance is still good when given less prior knowledge. |
| |
| Keywords: | intrusion detection computer security support vector machine |
| 本文献已被 CNKI 维普 等数据库收录! |
| 点击此处可从《西安电子科技大学学报(自然科学版)》浏览原始摘要信息 |
|
点击此处可从《西安电子科技大学学报(自然科学版)》下载全文 |
