首页 | 本学科首页   官方微博 | 高级检索  
     

基于关联分析的IDS报警信息的研究与设计
引用本文:肖莽,程从从. 基于关联分析的IDS报警信息的研究与设计[J]. 数字社区&智能家居, 2009, 0(24)
作者姓名:肖莽  程从从
作者单位:南昌大学信息工程学院;
摘    要:入侵检测系统的大部分报警事件之间都存在某种联系,通过对这些报警信息的关联分析,对解决目前入侵检测系统所存在的误报、漏报、重复报警、报警信息层次低等问题,具有重要的意义。该文基于因果关联方法,建立了一个入侵检测系统关联分析模型,该模型的关联分析过程分为聚合和关联分析,可以对不同入侵检测系统产生的报警信息进行关联分析。

关 键 词:入侵检测  报警聚合  关联分析  因果关联  漏报关联  

The Research and Design of IDS Dlerts Information Based on Correlation Analysis
XIAO Mang,CHENG Cong-cong. The Research and Design of IDS Dlerts Information Based on Correlation Analysis[J]. Digital Community & Smart Home, 2009, 0(24)
Authors:XIAO Mang  CHENG Cong-cong
Affiliation:College of Information Engineering;Nanchang University;Nanchang 330031;China
Abstract:The alert events detected by Intrusion Detection System are usually interrelated in certain respects. Through correlating of these alerts,it could be very helpful in solving many problems exit in current Intrusion Detection Systems,such as,high false positive ratio and false negative ratio,too many repeated and primitive alerts,etc.This paper present an alert correlation model,the alert correlation process include aggregation and correlation,which can correlation alerts produced by multiple heterogeneous in...
Keywords:intrusion detection  alerts aggregation  Alerts correlation  causality correlation  False negatives correlation  
本文献已被 CNKI 等数据库收录!
设为首页 | 免责声明 | 关于勤云 | 加入收藏

Copyright©北京勤云科技发展有限公司  京ICP备09084417号