| 分布式入侵检测系统中告警关联部件整体框架设计 |
| |
| 引用本文: | 龚发根.分布式入侵检测系统中告警关联部件整体框架设计[J].科学技术与工程,2011,11(9). |
| |
| 作者姓名: | 龚发根 |
| |
| 作者单位: | 1. 广东科学技术职业学院计算机系,珠海,519090
2. 湖南大学软件学院,长沙,410082 |
| |
| 基金项目: | 国家重点基础研究发展计划(973计划);国家自然科学基金项目(面上项目,重点项目,重大项目) |
| |
| 摘 要: | 告警关联能够将现有的入侵检测系统从只能检测单个入侵事件或异常状态转化成检测入侵过程,从而提高入侵检测系统的有效性和可用性。该文给出了一种分布式入侵检测系统中告警关联部件整体设计框架
|
| 关 键 词: | 入侵检测 告警关联 知识积累 |
| 收稿时间: | 2010/12/17 0:00:00 |
| 修稿时间: | 2010/12/23 0:00:00 |
The Overall frame design of alert correlation component in Distributed Intrusion Detection System |
| |
| gongfagen.The Overall frame design of alert correlation component in Distributed Intrusion Detection System[J].Science Technology and Engineering,2011,11(9). |
| |
| Authors: | gongfagen |
| |
| Institution: | GONG Fa-gen1,HE Yong-jun2 (Department of Computer Science and Engineering,GuangDong Institute of Science and Technology1,Zhuhai 519090,P.R.China,Software College of Hunan University2,Changsha 410082,P.R.China) |
| |
| Abstract: | Alert correlation component can transform the existing intrusion detection system from only detect the individually intrusion event or the abnormally state of compute system to detect intrusion process or the intruder, thus greatly enhances the validity and usability of the intrusion detection system . This article present one kind of overall frame design of alert correlateion component in Distributed Intrusion Detection System |
| |
| Keywords: | Intrusion Detection Alert Correlation knowledge accumulation |
| 本文献已被 CNKI 万方数据 等数据库收录! |
| 点击此处可从《科学技术与工程》浏览原始摘要信息 |
| 点击此处可从《科学技术与工程》下载免费的PDF全文 |
