| 基于Agent与数据挖掘的分布式入侵检测系统 |
| |
| 引用本文: | 张丹慧,佟振声.基于Agent与数据挖掘的分布式入侵检测系统[J].微机发展,2004,14(3):125-126,F003. |
| |
| 作者姓名: | 张丹慧 佟振声 |
| |
| 作者单位: | 华北电力大学计算机科学与工程系,华北电力大学计算机科学与工程系 河北保定071003,河北保定071003 |
| |
| 摘 要: | 针对目前计算机入侵检测系统中存在的不足.文中构建了一个基于Agent和数据挖掘技术的分布式入侵检测系统。这个系统引入移动Agent使入侵检测较好地适应了分布式的环境,采用数据挖掘技术使检测系统能够更加快速有效地发现入侵行为,明显地提高了检测系统的实时性。它还把误用检测和异常检测溶为一体,把基于主机和基于网络的入侵检测进行有机结合,具有良好的可扩展性、灵活性、鲁棒性、安全性、实时性、自适应性和检测的准确性。
|
| 关 键 词: | 计算机网络 网络安全 分布式入侵检测系统 Agent 数据挖掘 |
| 文章编号: | 1005-3751(2004)03-0125-03 |
Distributed Intrusion Detection System Based on Data Mining and Agent |
| |
| ZHANG Dan-hui,TONG Zhen-sheng.Distributed Intrusion Detection System Based on Data Mining and Agent[J].Microcomputer Development,2004,14(3):125-126,F003. |
| |
| Authors: | ZHANG Dan-hui TONG Zhen-sheng |
| |
| Abstract: | Aiming at the defects exiting in the present intrusion detection system,proposes to construct a distributed IDS framework based on Agent and the technology of data mining, which introduces mobile Agents that make the IDS system well adapt the distributed environment.And adopts data mining technology that makes the IDS system be able to find the intrusions faster and more efficient.Accordingly the realtime of the IDS has been improved .This IDS system makes misuse-detection and anomaly-detection into a whole and integrates IDS based on computer with that based on network.It has such advantages as expansibility, flexibility, robust, security, realtime, self-adaptability, and better detecting accuracy. |
| |
| Keywords: | intrusion detection system data mining distribution |
| 本文献已被 CNKI 维普 等数据库收录! |
