| 基于数据挖掘的网络型误用入侵检测系统研究 |
| |
| 引用本文: | 宋世杰 胡华平 胡笑蕾 金士尧. 基于数据挖掘的网络型误用入侵检测系统研究[J]. 重庆邮电学院学报(自然科学版), 2004, 16(1): 21-26 |
| |
| 作者姓名: | 宋世杰 胡华平 胡笑蕾 金士尧 |
| |
| 作者单位: | 国防科技大学计算机学院,国防科技大学计算机学院,国防科技大学计算机学院,国防科技大学计算机学院 湖南长沙410073,湖南长沙410073,湖南长沙410073,湖南长沙410073 |
| |
| 摘 要: | 数据挖掘技术应用于网络型误用入侵检测系统中,比传统的网络型入侵检测有更大优势。数据挖掘是从大量数据中自动寻找规律的过程,它可以自动构建特征,同时提高了检测精确度,为检测未知攻击提供了可能性。介绍了数据挖掘算法以及基于数据挖掘的入侵检测系统的分类,从不同分类的角度介绍了数据挖掘方法在入侵检测系统中的应用,并且从网络层和应用层2个层次得到实现。
|
| 关 键 词: | 数据挖掘 误用检测 关联规则 序列模式 |
Study of NIDS misuse based on data mining |
| |
| SONG Shi-jie,HU Hua-ping,HU Xiao-lei,JIN Shi-yao. Study of NIDS misuse based on data mining[J]. Journal of Chongqing University of Posts and Telecommunications(Natural Sciences Edition), 2004, 16(1): 21-26 |
| |
| Authors: | SONG Shi-jie HU Hua-ping HU Xiao-lei JIN Shi-yao |
| |
| Abstract: | Misuse of NIDS based on data mining shows more advantages than traditional NIDS. Data mining is a process of finding rules automatically, and it can automatic only construct features and improve accuracy and offer a possibility for detecting unknown intrusions. This paper introduces some data mining algorisms, and presents a classification method of IDS based on data mining,and finally completes the process of data mining application to misuse NIDS from network layer and application layer. |
| |
| Keywords: | data mining misuse detection association rules sequence pattern. |
| 本文献已被 CNKI 维普 等数据库收录! |
