| 基于免疫原理的非法系统调用的检测 |
| |
| 引用本文: | 黄杰,李涛. 基于免疫原理的非法系统调用的检测[J]. 计算机应用研究, 2007, 24(8): 165-166 |
| |
| 作者姓名: | 黄杰 李涛 |
| |
| 作者单位: | 四川大学,计算机学院,成都,610065;四川大学,计算机学院,成都,610065 |
| |
| 基金项目: | 教育部跨世纪优秀人才培养计划 |
| |
| 摘 要: | 入侵检测系统依赖于大量的数据检测以区别合法和非法的行为.通过检测操作系统内核的系统调用序列,应用免疫原理中的否定选择算法,以区分合法与非法的系统调用.实验验证了该方法的可行性和有效性.
|
| 关 键 词: | 计算机免疫 系统调用 否定选择 |
| 文章编号: | 1001-3695(2007)08-0165-02 |
| 修稿时间: | 2006-05-29 |
Detection of abnormal system call based on immunology |
| |
| HUANG Jie,LI Tao. Detection of abnormal system call based on immunology[J]. Application Research of Computers, 2007, 24(8): 165-166 |
| |
| Authors: | HUANG Jie LI Tao |
| |
| Affiliation: | College of Computer, Sichuan University, Chengdu 610065, China |
| |
| Abstract: | Intrusion detection systems rely on a wide variety of observable data to distinguish between legitimate and illegitimate activities. This paper studied one such observable: sequences of system calls into the kernel of an operating system. This paper presented a novelty detection algorithm inspired by the negative selection mechanism of the immune system, which discriminated between self and other. The experiments verify the feasibility and effectiveness of this method. |
| |
| Keywords: | computer immunology system call negative selection |
| 本文献已被 维普 万方数据 等数据库收录! |
| 点击此处可从《计算机应用研究》浏览原始摘要信息 |
|
点击此处可从《计算机应用研究》下载全文 |
|
