| 进程异常检测中淋巴细胞的逻辑语义模型 |
| |
| 引用本文: | 关刚,董红斌,谭成予,梁意文. 进程异常检测中淋巴细胞的逻辑语义模型[J]. 计算机工程与应用, 2005, 41(17): 39-42,78 |
| |
| 作者姓名: | 关刚 董红斌 谭成予 梁意文 |
| |
| 作者单位: | 武汉大学软件工程国家重点实验室/计算机学院,武汉,430072;武汉大学软件工程国家重点实验室/计算机学院,武汉,430072;武汉大学软件工程国家重点实验室/计算机学院,武汉,430072;武汉大学软件工程国家重点实验室/计算机学院,武汉,430072 |
| |
| 基金项目: | 国家自然科学重大研究计划项目(编号:90204011),湖北省科技攻关计划课题 |
| |
| 摘 要: | 论文针时反向选择算法无法有效地捕捉某些复杂问题空间的语义信息的缺点,以逻辑程序设计领域中的稳定模型为理论基础,提出一个淋巴细胞的逻辑语义模型。该模型采用逻辑程序表示淋巴细胞和抗原,通过计算它们的稳定模型来进行异常检测。最后,以进程异常检测为背景,设计了一个系统框架。该框架充分考虑了进程系统调用短序列的语义信息。能有效地提高异常检测的准确率。
|
| 关 键 词: | 人工免疫学 逻辑程序 异常检测 |
| 文章编号: | 1002-8331-(2005)17-0039-04 |
A Logic-based Semantic Model of Lymphocytes Applied to Process-based Anomaly Detection |
| |
| Guan Gang,DONG Hongbin,Tan Chengyu,LIANG Yiwen. A Logic-based Semantic Model of Lymphocytes Applied to Process-based Anomaly Detection[J]. Computer Engineering and Applications, 2005, 41(17): 39-42,78 |
| |
| Authors: | Guan Gang DONG Hongbin Tan Chengyu LIANG Yiwen |
| |
| Abstract: | Concerning with the disadvantage that negative selection algorithm can not effectively capture semantic information in some complex problem spaces,this paper proposes a logic-based semantic model of lymphocytes which is based upon stable model theory in logic programming.This model represents lymphocytes and antigens as logic programs and detects abnormal behavior by compute their stable model.Finally,in the background of process-based anomaly detection,the authors have designed a systematic framework which tries to exploit semantic information in subsequences of system call trails generated by processes and is able to effectively improve the accuracy in anomaly detection. |
| |
| Keywords: | artificial immunology logic program anomaly-based detection |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
