首页 | 本学科首页   官方微博 | 高级检索  
     

异常入侵检测系统虚警率问题研究
引用本文:柴争义,汪宏海. 异常入侵检测系统虚警率问题研究[J]. 计算机科学, 2009, 36(11): 68-70
作者姓名:柴争义  汪宏海
作者单位:河南工业大学信息科学与工程学院,郑州,45000;西安电子科技大学计算机学院,西安,710071;赣南教育学院计算机系,赣州,341000
基金项目:国家自然科学基金,河南省自然科学基金项目 
摘    要:入侵检测系统的虚警率影响检测结果的可信性.通过分析入侵检测系统的可信问题及异常入侵检测系统的虚警率问题,提出了降低虚警率的方法:基于进程检测行为的入侵检测方法、多检测系统协作工作模式.重点描述了基于人工免疫思想,动态构建正常系统轮廓,抑制虚警率的方法,并对其进行了仿真实验.实验表明,本方法可以提高检测效率,有效降低系统虚警率.

关 键 词:异常入侵检测  虚警率  人工免疫  进程行为
收稿时间:2008-12-11
修稿时间:2009-03-02

Study of Anomaly Intrusion Detection System on False Positive Rate
CHAI Zheng-yi,WANG Hong-hai. Study of Anomaly Intrusion Detection System on False Positive Rate[J]. Computer Science, 2009, 36(11): 68-70
Authors:CHAI Zheng-yi  WANG Hong-hai
Affiliation:(School of Information Science and Engineering,Hennan University of Technology,Zhengzhou 450001,China);(School of Computer,Xidian University,Xian 710071,China);(School of Computer Science,Gannan Institute of Education,Ganzhou 341000,China)
Abstract:False positive rate of intrusion detection systems (IDS) affect the detection creditability. Methods to reduce the false positive rate were presented after analyzing creditability of IDS and false positive rate of anomaly IDS. It put methods include the followings; method based on process detection, multi-detection system model. It put emphasis onconstructing normal profile dynamically based on artificial immunity to restrain false positive rate, then simulation experiment was done. The results show that the method can improve the detection efficiency and reduce the false positive rate.
Keywords:Anomaly intrusion detection  False positive rate  Artificial immunity  Process behaviors
本文献已被 万方数据 等数据库收录!
点击此处可从《计算机科学》浏览原始摘要信息
点击此处可从《计算机科学》下载全文
设为首页 | 免责声明 | 关于勤云 | 加入收藏

Copyright©北京勤云科技发展有限公司  京ICP备09084417号