| NIDS警报分析系统模型设计与分析 |
| |
| 引用本文: | 叶震,钱焜,白永志.NIDS警报分析系统模型设计与分析[J].合肥工业大学学报(自然科学版),2005,28(11):1377-1380. |
| |
| 作者姓名: | 叶震 钱焜 白永志 |
| |
| 作者单位: | 合肥工业大学,计算机与信息学院,安徽,合肥,230009 |
| |
| 摘 要: | 网络入侵检测系统(N IDS)是一种检测网络入侵行为的工具,但在实际应用中,警报量多、误警率高,已经严重制约了N IDS的发展。文章分析了其产生的原因,提出了一种基于异常检测技术的N IDS警报分析系统模型;重点讨论了数据挖掘技术在该模型中的应用。
|
| 关 键 词: | 网络入侵检测系统 误警率 数据挖掘 异常检测 入侵警报 |
| 文章编号: | 1003-5060(2005)11-1377-04 |
| 修稿时间: | 2004年12月30 |
Design and analysis of the model of the alarms analysis system in NIDS |
| |
| YE Zhen,QIAN Kun,BAI Yong-zhi.Design and analysis of the model of the alarms analysis system in NIDS[J].Journal of Hefei University of Technology(Natural Science),2005,28(11):1377-1380. |
| |
| Authors: | YE Zhen QIAN Kun BAI Yong-zhi |
| |
| Abstract: | Nowadays many network intrusion detection systems(NIDSs) employ the misuse detection technology or the anomaly detection technology to detect network data streams and alarm attack attempts.In reality,too many alarms and the high false positive rate have already restricted the development of NIDSs.The causes are analyzed in this paper,and to solve the problems,a model based on anomaly detection is presented for analyzing the alarms in NIDSs.The application of database mining technology to extract the behavior of normal alarms of NIDSs is discussed in detail. |
| |
| Keywords: | network intrusion detection system(NIDS) false positive rate data mining anomaly detection intrusion alarm |
| 本文献已被 CNKI 万方数据 等数据库收录! |
