| 网络延迟聚类的宏观预警的检测点放置 |
| |
| 引用本文: | 何慧,胡铭曾,云晓春,张宏莉. 网络延迟聚类的宏观预警的检测点放置[J]. 通信学报, 2006, 27(2): 119-124 |
| |
| 作者姓名: | 何慧 胡铭曾 云晓春 张宏莉 |
| |
| 作者单位: | 哈尔滨工业大学计算机网络信息安全研究中心,黑龙江,哈尔滨,150001 |
| |
| 基金项目: | 国家科技攻关项目;中国科学院资助项目 |
| |
| 摘 要: | 大规模异常事件爆发,使网络可用性受到严重威胁。引发人们对大规模入侵检测系统的研究,其检测效果直接取决于网络检测点选取。大规模网络预警检测点放置问题被转化为网络拓扑有权图聚类问题。针对层次聚类算法面临的初始点选择问题提出基于出度分离初始点选择算法,降低聚类结果对初值的依赖。同时,提出改进双向层次聚类算法DHC,有效降低了结果簇数量。实验证明,此算法整体最优并成功应用于测得的真实全国骨干网络,有效解决了检测点放置问题。
|
| 关 键 词: | 分布式入侵 宏观预警 检测点放置 层次聚类 |
| 文章编号: | 1000-436X(2006)02-0119-06 |
| 收稿时间: | 2005-11-15 |
| 修稿时间: | 2005-12-20 |
Network latency clustering for detector placement on macroscopical prewarning |
| |
| HE Hui,HU Ming-zeng,YUN Xiao-chun,ZHANG Hong-li. Network latency clustering for detector placement on macroscopical prewarning[J]. Journal on Communications, 2006, 27(2): 119-124 |
| |
| Authors: | HE Hui HU Ming-zeng YUN Xiao-chun ZHANG Hong-li |
| |
| Affiliation: | Research Center of Computer Network and Information Security Technology, Harbin Institute of Technology, Harbin 150001, China |
| |
| Abstract: | Research on the network-based and distributed intrusion detection was aroused by the burst-outs of large-scale security events.How to place detection instruments was the key to the detections.The problem of detector placement was turned to that of the clustering of topology graph.A novel bidirectional hierarchical clustering algorithm was put forward,which decreased the amount of result clusters by integration of initial marker selection method based on node out-degree.The simulation results demonstrates that our clustering approaches effectively identify clusters and been employed in the measured real network of the backbone. |
| |
| Keywords: | distributed intrusion macroscopically prewarning detector placement hierarchical clustering |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《通信学报》浏览原始摘要信息 |
|
点击此处可从《通信学报》下载全文 |
|
