| 一种在入侵检测中发现异常的新方法 |
| |
| 引用本文: | 李庆华,苏珊,蒋盛益.一种在入侵检测中发现异常的新方法[J].华中科技大学学报(自然科学版),2004,32(7):21-23. |
| |
| 作者姓名: | 李庆华 苏珊 蒋盛益 |
| |
| 作者单位: | 华中科技大学,计算机科学与技术学院,湖北,武汉,430074;华中科技大学,计算机科学与技术学院,湖北,武汉,430074;华中科技大学,计算机科学与技术学院,湖北,武汉,430074 |
| |
| 基金项目: | 国家自然科学基金资助项目 (6 0 2 730 75 ) |
| |
| 摘 要: | 入侵检测是一种重要的网络安全技术.现有的无监督方法虽然能在未经标记的数据上找出异常,但时间复杂度相对较高,不适用于入侵检测中大规模的数据集.针对这一问题,提出了一种新的发现异常的无监督方法,通过使用聚类和K-近邻距离和技术,克服了原有方法的缺点,具有较低的时间复杂度和较高的入侵检测效率.
|
| 关 键 词: | 入侵检测 无监督方法 聚类 K-近邻 |
| 文章编号: | 1671-4512(2004)07-0021-03 |
| 修稿时间: | 2003年10月30 |
An approach to finding anomalies in intrusion detection |
| |
| Li Qinghua Su Shan Jiang Shengyi Li Qinghua Prof., College of Computer Sci. & Tech.,Huazhong Univ. of Sci. & Tech.,Wuhan ,China..An approach to finding anomalies in intrusion detection[J].JOURNAL OF HUAZHONG UNIVERSITY OF SCIENCE AND TECHNOLOGY.NATURE SCIENCE,2004,32(7):21-23. |
| |
| Authors: | Li Qinghua Su Shan Jiang Shengyi Li Qinghua Prof College of Computer Sci & Tech Huazhong Univ of Sci & Tech Wuhan China |
| |
| Institution: | Li Qinghua Su Shan Jiang Shengyi Li Qinghua Prof., College of Computer Sci. & Tech.,Huazhong Univ. of Sci. & Tech.,Wuhan 430074,China. |
| |
| Abstract: | Existing Unsupervised approaches can find anomalies on unlabeled data, but most of them have very large time complexity. So they are difficult to be applied to large datasets typically available in intrusion detection. An unsupervised approach was proposed to find anomalies. The method was characterized by lower time complexity and higher detection rate by means of clustering and the k nearest neighbors techniques. |
| |
| Keywords: | intrusion detection unsupervised approaches clustering k nearest neighbors |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
