| 基于证据推理的多agent分布式入侵检测系统模型 |
| |
| 引用本文: | 叶清,吴晓平,翟定军,付钰.基于证据推理的多agent分布式入侵检测系统模型[J].计算机应用研究,2009,26(8):3063-3066. |
| |
| 作者姓名: | 叶清 吴晓平 翟定军 付钰 |
| |
| 作者单位: | 海军工程大学,电子工程学院,武汉,430033 |
| |
| 摘 要: | 在分析现有基于agent的入侵检测系统(IDS)基础上,提出了一种基于证据推理的多agent分布式两级IDS模型。该模型采用分布检测、分布响应的模式,通过多agent技术的思想建立系统总体结构,给出了模型的各个组成部分,并对结构中各种agent与中心控制台的功能设计进行了分析。同时,为了提高中心控制台的融合性能,设计了一种可有效减少证据合成计算量又可确保合成准确性的证据推理算法,并对动态选举算法、协同算法进行了初步分析。系统可充分利用各种资源协同完成入侵检测任务,实时响应,有效地改进了传统IDS。
|
| 关 键 词: | 证据推理 分布式入侵检测系统 多代理 协同 |
Multi-agent distributed intrusion detection system model based on evidence reasoning |
| |
| YE Qing,WU Xiao-ping,ZHAI Ding-jun,FU Yu.Multi-agent distributed intrusion detection system model based on evidence reasoning[J].Application Research of Computers,2009,26(8):3063-3066. |
| |
| Authors: | YE Qing WU Xiao-ping ZHAI Ding-jun FU Yu |
| |
| Affiliation: | (College of Electronic Engineering, Naval University of Engineering, Wuhan 430033, China ) |
| |
| Abstract: | This paper proposed a distributed IDS (DIDS) model utilizing both multi-agent and evidence reasoning by analyzing the existed agent-based IDS, which adopted the method of distributed detection, distributed response and the ideology of multi-agent. And it described all the composed parts of DIDS model and analyzed the function design of all kinds of agent and the control centre. To improve the performance of the control centre, presented an algorithm for evidence reasoning to decrease the computation and increase the accuracy of combination. Furthermore, discussed the algorithms of dynamic election and cooperation preliminarily. The proposed DIDS may make full of all kinds of information to cooperatively complete the detection and make real-time response, which effectively improves the traditional IDS. |
| |
| Keywords: | evidence reasoning DIDS multi-agent cooperation |
| 本文献已被 CNKI 万方数据 等数据库收录! |
| 点击此处可从《计算机应用研究》浏览原始摘要信息 |
|
点击此处可从《计算机应用研究》下载全文 |
|
