| 一种新的入侵检测方法 |
| |
| 引用本文: | 宁慧,于翔,吴培莲,吴悦.一种新的入侵检测方法[J].哈尔滨工业大学学报,2008,40(12):2082-2087. |
| |
| 作者姓名: | 宁慧 于翔 吴培莲 吴悦 |
| |
| 作者单位: | [1]哈尔滨工程大学计算机科学与技术学院,哈尔滨150001 [2]哈尔滨工业大学材料科学与工程学院,哈尔滨150001 [3]哈尔滨工业大学计算机科学与技术学院,哈尔滨150001 |
| |
| 基金项目: | 国家自然科学基金资助项目
|
| |
| 摘 要: | 随着Internet网络的快速普及,针对计算机及网络基础设施的攻击已经成为了一个越来越严重的问题.针对入侵检测技术提出了一种基于敏感时间滑窗的检测算法STSW,扩展了数据挖掘在入侵检测中的应用.以KDD CUP99作为实验数据研究了参数的选取对检测效果的影响,将该算法的执行效率与基于SPADE挖掘序列模式的入侵检测算法进行了对比.结果表明:入侵检测算法可以取得比较满意的检测效果,并且执行效率要优于基于SPADE的入侵检测算法.
|
| 关 键 词: | 入侵检测 数据挖掘 关联规则 敏感时间滑窗 |
A new approach for intrusion detection |
| |
| NING Hui,YU Xiang,WU Pei-lian,WU Yue.A new approach for intrusion detection[J].Journal of Harbin Institute of Technology,2008,40(12):2082-2087. |
| |
| Authors: | NING Hui YU Xiang WU Pei-lian WU Yue |
| |
| Affiliation: | 1.College of Computer Science and Technology,Harbin Engineering University,Harbin 150001,China;2.College of Materials Science and Engineering,Harbin Institute of Technology,Harbin 150001,China;3.School of Computer Science and Technology,Harbin Institute of Technolgoy,Harbin 150001,China) |
| |
| Abstract: | With the wide spread of Internet,the attacks against computers and network infrastructures have become an increasingly serious problem. Aiming at the detection technology,we present a detection algorithm STSW based on a time-sensitive sliding window,which expands the application of data mining in intrusion detection. Using KDD CUP99 as experimental data,the paper studied the effect of selection of different parameters on detection results. The efficiency of the presented algorithm was compared with that of the algorithm based on SPADE mining sequence patterns. Experimental results show that the presented intrusion detection algorithm can get quite satisfactory effect. The performance efficiency of the algorithm in this paper is better than that of the algorithm based on SPADE. |
| |
| Keywords: | intrusion detection data mining association rules time-sensitive sliding window |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
