|
|||||
|
|
| 基于概率模糊认知图的混合入侵检测方法 | |
| 引用本文: | 钟诚,杨锋,陈国良.基于概率模糊认知图的混合入侵检测方法[J].小型微型计算机系统,2006,27(5):783-787. |
| 作者姓名: | 钟诚 杨锋 陈国良 |
| 作者单位: | 1. 广西大学,计算机与电子信息学院,广西,南宁,530004;中国科技大学,计算机科学与技术系,安徽,合肥,230027 2. 广西大学,计算机与电子信息学院,广西,南宁,530004 3. 中国科技大学,计算机科学与技术系,安徽,合肥,230027 |
| 摘 要: | 结合模糊认知图理论,构造基于概率模糊认知图(PFCM)的攻击图来描述入侵行为,提出一种结合误用检测和异常检测的基于PFCM的混合入侵检测方法.该方法用模糊概念描述异常,用数值运算代替模式匹配,并利用概率测度有效表示各因素问关系的不确定性.构造基于PFCM的Smurf攻击图并进行检测实验,实验结果表明该方法能在保持高检测率的情况下降低误报率,并具有较好的鲁棒性. |
| 关 键 词: | 网络入侵检测 概率模糊认知图 概率测度 |
| 文章编号: | 1000-1220(2006)05-0783-05 |
| 收稿时间: | 01 25 2005 12:00AM |
| 修稿时间: | 2005-01-25 |
Hybrid Intrusion Detection Approach Based on Probabilistic Fuzzy Cognitive Map |
|
| ZHONG Cheng,YANG Feng,CHEN Guo-Liang.Hybrid Intrusion Detection Approach Based on Probabilistic Fuzzy Cognitive Map[J].Mini-micro Systems,2006,27(5):783-787. | |
| Authors: | ZHONG Cheng YANG Feng CHEN Guo-Liang |
| Affiliation: | 1.School of Computer and Electronics and Information, Guangxi University, Nanning 530004, China; 2.Department of Computer Science and Technology, University of Science and Technology of China, Hefei 230027, China |
| Abstract: | Based on probabilistic fuzzy cognitive map (PFCM), the attack map was constructed to describe intrusion behaviors by applying fuzzy cognitive map theory. By combining misuse detection with anomaly detection, a hybrid intrusion detection approach based on PFCM was presented. It described anomaly as fuzzy conception, executed numerical operations instead of pattern matching, and expresses the uncertainty of relations of the factors by applying probability measure. The Smurf attack map based on PFCM was constructed and experimented. The test results showed that the approach was robust and can keep high detection rate with lower false positive rate. |
| Keywords: | network intrusion detection probabilistic fuzzy cognitive map probability measure |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! | |