| 一种提高网络入侵检测系统检测率的方法 |
| |
| 引用本文: | 曾茂林,文志诚,杨 润,向华政.一种提高网络入侵检测系统检测率的方法[J].湖南工业大学学报,2011,25(2):62-66. |
| |
| 作者姓名: | 曾茂林 文志诚 杨 润 向华政 |
| |
| 作者单位: | 湖南工业大学计算机与通信学院,湖南株洲,412008 |
| |
| 基金项目: | 湖南省教育厅科研基金资助项目(09C327) |
| |
| 摘 要: | 在繁重的网络流量或流量突爆的情况下,网络入侵检测系统(NIDS)无法对所有监控的流进行检测。针对NIDS的这种局限性,提出了一种选择弃包方法,该方法受系统负载的影响较小,能使NIDS预测到系统负载条件。通过对系统的性能分析实验,证明了在流量过载情况下,选择弃包法有效地提高了网络入侵检测系统的检测率。
|
| 关 键 词: | 入侵检测 选择弃包 过载控制 Snort |
| 收稿时间: | 2010/12/1 0:00:00 |
A Method to Improve the Accuracy of Network Intrusion Detection System |
| |
| Zeng Maolin,Wen Zhicheng,Yang Run and Xiang Huazheng.A Method to Improve the Accuracy of Network Intrusion Detection System[J].Journal of Hnnnan University of Technology,2011,25(2):62-66. |
| |
| Authors: | Zeng Maolin Wen Zhicheng Yang Run and Xiang Huazheng |
| |
| Affiliation: | Zeng Maolin,Wen Zhicheng,Yang Run,Xiang Huazheng(College of Computer and Communication,Hunan University of Technology,Zhuzhou Hunan 412008,China) |
| |
| Abstract: | Under conditions of heavy traffic load or sudden traffic busts, network intrusion detection system (NIDS) may not inspect all monitored traffic. In view of the NIDS limitations, presents a method of selective packet discarding, which is less affected by system load and enables NIDS to predict the system load conditions. By analyzing the system's performance, proves that the method improves the detection accuracy of NIDS under the traffic overload. |
| |
| Keywords: | intrusion detection selective packet discarding overload control Snort |
| 本文献已被 CNKI 万方数据 等数据库收录! |
| 点击此处可从《湖南工业大学学报》浏览原始摘要信息 |
|
点击此处可从《湖南工业大学学报》下载全文 |
|
