| 基于协议分析的并行聚类入侵检测模型 |
| |
| 引用本文: | 汪军,王传玉. 基于协议分析的并行聚类入侵检测模型[J]. 安徽机电学院学报, 2009, 0(4): 28-31 |
| |
| 作者姓名: | 汪军 王传玉 |
| |
| 作者单位: | [1]安徽工程科技学院应用数理系,安徽芜湖241000 [2]安徽工程科技学院计算机科学与工程系,安徽芜湖241000 |
| |
| 基金项目: | 基金项目:国家自然科学研究基金资助项目(10826098);安徽省高校自然科学研究基金资助项目(2006kj058b) |
| |
| 摘 要: | 模糊P均值聚类(FCM)的算法是在硬P均值算法(HCM)发展而来的,虽然改进了硬产均值算法的聚类效果,但带来了时间复杂度的增加.提出了一种基于协议分析分类的并行入侵检测模型,根据协议分析将大的数据集进行分类。构成不同的数据集,先对各个数据集进行FCM聚类。然后对每个FCM聚类的结果再次进行FCM聚类.构成并行处理系统.采用协议分析技术结合高速数据包捕捉、协议解析等技术来进行分布式入侵检测,可以提高入侵检测的速度.
|
| 关 键 词: | FCM 协议分析 并行 入侵检测 |
Parallel clustering intrusion detection model based on protocol analysis |
| |
| WANG Jun,WANG Chuan-yu. Parallel clustering intrusion detection model based on protocol analysis[J]. Journal of Anhui Institute of Mechanical and Electrical Engineering, 2009, 0(4): 28-31 |
| |
| Authors: | WANG Jun WANG Chuan-yu |
| |
| Affiliation: | 1. Dept. of Math & Phy. , Anhui University of Technology and Science , Wuhu 241000,China; 2. Dept. of Comp. Sci. & Engn, Anhui University of Technology and Science ,Wuhu 241000,China) |
| |
| Abstract: | Fuzzy c-means(FCM) clusters extends from Hard c-means algorithm, which has improved the clusters' efficiency of HCM, but it increases Time Complexity. This paper presents a Parallel Clustering Intrusion Detection Model based on Protocol Analysis. A large data set is partitioned into several different sets. These different sets are carried on FCM clustering. Then their results are reused to implement FCM clustering. They constitute parallel system. Distributed intrusion detection is implemented using the combination of protocol analysis and high-speed data capture, which enhances intrusion detection velocity. |
| |
| Keywords: | FCM protocol analysis parallel computation intrusion detection |
| 本文献已被 维普 等数据库收录! |
