| 一种基于模糊综合评判的入侵异常检测方法 |
| |
| 引用本文: | 张剑,龚俭.一种基于模糊综合评判的入侵异常检测方法[J].计算机研究与发展,2003,40(6):776-783. |
| |
| 作者姓名: | 张剑 龚俭 |
| |
| 作者单位: | 东南大学计算机科学与工程系,南京,210096 |
| |
| 基金项目: | 国家自然科学基金项目 ( 90 10 40 31) |
| |
| 摘 要: | 目前国际上已实现的大多数入侵检测系统是基于滥用检测技术的,异常检测技术还不太成熟,尤其是基于网络的异常检测技术,如何提高其准确性、效拿和可用性是研究的难点.提出了一种面向网络的异常检测算法FJADA,该算法借鉴了模糊数学的理论,应用模糊综合评判工具来评价网络连接的“异常度”,从而确定该连接是否“入侵”行为.实验证明,该方法能检测出未知的入侵方式,而且准确性较高.
|
| 关 键 词: | 入侵检测 滥用检测 异常检测 模糊综合评判 语言变量 |
An Anomaly Detection Method Based on Fuzzy Judgement |
| |
| ZHANG Jian and GONG Jian.An Anomaly Detection Method Based on Fuzzy Judgement[J].Journal of Computer Research and Development,2003,40(6):776-783. |
| |
| Authors: | ZHANG Jian and GONG Jian |
| |
| Abstract: | Currently most internationally implemented IDSs are based on the technology of misuse detection. The technology of anomaly detection, especially which is based on network, is not so mature. How to improve its accuracy, efficiency, and usability is the difficulty of research. Presented in this paper is an algorithm of anomaly detection oriented to computer network: FJADA, which has benefited from fuzzy mathematics. The algorithm applies fuzzy judgement to evaluate the anomaly degree of a network connection, and then decides whether the network connection is intrusive or not. Experiments have verified that the method can detect unknown intrusion and the accuracy is high. |
| |
| Keywords: | intrusion detection misuse detection anomaly detection fuzzy judgement linguistic variable |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
