| 一种基于Agent的自适应的分布式入侵检测系统 |
| |
| 引用本文: | 王晋,李德全,冯登国. 一种基于Agent的自适应的分布式入侵检测系统[J]. 计算机研究与发展, 2005, 42(11): 1934-1939 |
| |
| 作者姓名: | 王晋 李德全 冯登国 |
| |
| 作者单位: | 中国科学院软件研究所信息安全国家重点实验室,北京,100080;中国科学院研究生院,北京,100039 |
| |
| 基金项目: | 国家自然科学基金项目(60273027) |
| |
| 摘 要: | 针对传统分布式入侵检测系统组件之间依赖程度大、系统不够健壮且入侵检测系统自身结构固定不能适应入侵的变化的问题,提出了一种基于Agent的自适应的分布式入侵检测系统(简称AAADIDS).AAADIDS采用Agent概念重新构造系统的组件,改进了分布式入侵检测系统由于高层节点单一无冗余而产生的可靠性差的缺陷,从构造上克服了分布式入侵检测系统的脆弱性.同时,AAADIDS系统采用智能技术构建了自适应的入侵检测系统模型,增加了系统应对入侵行为变化的智能性.AAADIDS系统相对于传统的分布式入侵检测系统有效地提高了系统自身的可靠性和针对外界变化的适应能力.
|
| 关 键 词: | 自适应 分布式 入侵检测 Agent |
| 收稿时间: | 2004-05-13 |
| 修稿时间: | 2004-05-132004-12-17 |
An Autonomous Agent-Based Adaptive Distributed Intrusion Detection System |
| |
| Wang Jin,Li Dequan,Feng Dengguo. An Autonomous Agent-Based Adaptive Distributed Intrusion Detection System[J]. Journal of Computer Research and Development, 2005, 42(11): 1934-1939 |
| |
| Authors: | Wang Jin Li Dequan Feng Dengguo |
| |
| Affiliation: | 1. State Key Laboratory of Information Security, Institute of Software, Chinese Academy of Sciences, Beijing 100080;2. Graduate University, Chinese Academy of Sciences, Beijing 100039 |
| |
| Abstract: | Traditional distributed intrusion detection systems have many shortcomings, such as heavy interdependence of components and weak reliability of these systems. AAADIDS, which is an acronym for autonomous-agent-based adaptive distributed intrusion detection system, is proposed to solve these problems. The components functions are put up and components collaborations in the network are discussed here. AAADIDS adopts new analysis policies to aim at heavy loads of detection tasks and DCAs to increase system adaptive ability. Compared with the traditional distributed intrusion detection systems, AAADIDS is a more adaptive and efficient system. |
| |
| Keywords: | adaptive distributed intrusion detection agent |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
