| 免疫原理驱动的入侵检测系统框架 |
| |
| 引用本文: | 刘礼加,欧阳明光,潘峰,张勇,汪为农. 免疫原理驱动的入侵检测系统框架[J]. 计算机工程与应用, 2003, 39(10): 141-143 |
| |
| 作者姓名: | 刘礼加 欧阳明光 潘峰 张勇 汪为农 |
| |
| 作者单位: | 上海交通大学计算机科学与工程系,上海,200030 |
| |
| 基金项目: | 国家自然科学基金(编号:60073074) |
| |
| 摘 要: | 将人体免疫原理应用于计算机安全领域是安全技术研究的一次新的尝试。免疫系统捍卫着人体的生存,正如入侵检测系统(IDS,IntrusionDetectionSystem)保护计算机系统免受攻击的摧毁。当前大多数IDS系统仅采用基于特征的检测以减少误报,然而这会造成不可忍受的漏报问题。论文将免疫原理引入入侵检测领域,试图为当前入侵检测领域普遍存在的误报、漏报问题提出一种解决方案,并提出一种分布式、轻量级和自组织的入侵检测系统框架。
|
| 关 键 词: | 免疫原理 基于特征的入侵检测 基于行为的入侵检测 入侵检测框架 |
| 文章编号: | 1002-8331-(2003)10-0141-03 |
| 修稿时间: | 2002-07-01 |
An Intrusion Detection System Framework Inspired by Immune Principles |
| |
| Liu Lijia OuYang Mingguang Pan Feng Zhang Yong Wang Weinong. An Intrusion Detection System Framework Inspired by Immune Principles[J]. Computer Engineering and Applications, 2003, 39(10): 141-143 |
| |
| Authors: | Liu Lijia OuYang Mingguang Pan Feng Zhang Yong Wang Weinong |
| |
| Abstract: | It's a novel approach to computer security to apply human immune principles to computer security.The im-mune system protecting the survival of human body is like the intrusion detection system protecting computer system from attacking.Many of current IDSes implement only signature-based intrusion detection which gives them less false positive but with a unbearable false negative.This paper tries to give a solution to the common high false positive and high false negative problems present in current IDSes by applying the immune principles,and here the authors come out a IDS framework that is distributed,lightweight and self-organization. |
| |
| Keywords: | Immune Principles Signature-Based ID Behavior-Based ID IDS Framework |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
