| 基于SNORT的入侵规则动态排序方法研究 |
| |
| 引用本文: | 牛建强,徐美玉,陈昕,曹元大.基于SNORT的入侵规则动态排序方法研究[J].计算机工程与应用,2006,42(28):115-118. |
| |
| 作者姓名: | 牛建强 徐美玉 陈昕 曹元大 |
| |
| 作者单位: | 河南科技大学电子信息工程学院,河南,洛阳,471039;北京信息工程学院计算机信息系统系,北京,100101;北京理工大学信息科学技术学院计算机科学与工程系,北京,100081 |
| |
| 基金项目: | 国家网络和信息安全管理中心资助项目 |
| |
| 摘 要: | 提出了一个实时的动态调整入侵规则的方法。该方法让入侵检测系统的规则在表头与功能选项的关联条件下,执行自动排序,使之能在一定的时间排序出最佳的规则读取顺序,以在最短的时间内检测出入侵行为,提升检测效能。实验证明该方法可行有效,具有较高的实用价值。
|
| 关 键 词: | 入侵检测 分类规则 动态分类 |
| 文章编号: | 1002-8331(2006)28-0115-04 |
| 收稿时间: | 2006-03 |
| 修稿时间: | 2006-03 |
Research on Dynamic Sorting of Intrusion Detection Rules Based on SNORT |
| |
| NIU Jian-qiang,XU Mei-yu,CHEN Xin,CAO Yuan-da.Research on Dynamic Sorting of Intrusion Detection Rules Based on SNORT[J].Computer Engineering and Applications,2006,42(28):115-118. |
| |
| Authors: | NIU Jian-qiang XU Mei-yu CHEN Xin CAO Yuan-da |
| |
| Affiliation: | 1.School of Electronic and Informational Engineering,Henan University of Science and Technology,Luoyang,Henan 471039; 2.Department of Information System,Beijing Institute of Information Engineering,Beijing 100101; 3.Department of Computer Science and Engineering,School of Information Science and Technology, Beijing Institute of Technology,Beijing 100081 |
| |
| Abstract: | The method of dynamic sorting for intrusion detection rules is proposed.With the correlation of the header and options,it can sort automatically to get the better sequence of rules,which can detect the intrusion behaviors in a short time so as to improve the efficiency.Experiment result shows that the proposed method is effective in practice. |
| |
| Keywords: | Intrusion Detection rule dynamic sorting |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
