| 基于信息熵的网络流量信息结构特征研究 |
| |
| 引用本文: | 严承华,程晋,樊攀星.基于信息熵的网络流量信息结构特征研究[J].信息网络安全,2014(3):28-31. |
| |
| 作者姓名: | 严承华 程晋 樊攀星 |
| |
| 作者单位: | 海军工程大学信息安全系,湖北武汉,430033 |
| |
| 基金项目: | 全军军事学研究生课题12011jY002-435] |
| |
| 摘 要: | 随着人们对网络流量特征研究的深入,网络异常检测技术得以不断发展,因此流量特征分析是网络异常检测的基础性重要工作。文章研究基于熵的流量信息结构特征,不同于已有的网络流量初级统计特征研究,它以提取的流量属性在单位时间内分布特征为研究对象。基于 DARPA 99数据集的实验表明,该方法相对于基于流量初级统计特征方流量异常表示方法具有更强的敏感性。
|
| 关 键 词: | 网络流量异常 网络流量特征 流量信息结构 信息熵 |
Research on the Network Traffic Information Structure Feature based on Entropy |
| |
| YAN Cheng-hua,CHENG Jin,FAN Pan-xing.Research on the Network Traffic Information Structure Feature based on Entropy[J].Netinfo Security,2014(3):28-31. |
| |
| Authors: | YAN Cheng-hua CHENG Jin FAN Pan-xing |
| |
| Affiliation: | YAN Cheng-hua, CHENG Jin, FAN Pan-xing |
| |
| Abstract: | Because of the deep research of network traffic feature, technique of network anomaly detection developed rapidly. So the analysis of network traffic becomes a primary important basement of network anomaly detection. This paper study the traffic distribution feature based on entropy, different from traffic research based on the primary statistical feature, the study object becomes extracted attribute distribution feature. Experiment based on DARPA 99 dataset shows that, compared with proposed method, this kind of means is much more sensitive to anomaly traffic. |
| |
| Keywords: | network traffic anomaly feature of network traffic traffic information structure information entropy |
| 本文献已被 CNKI 维普 等数据库收录! |
