| 一种不定长特征模式入侵检测模型及仿真分析 |
| |
| 引用本文: | 葛方斌,杨林,王建新,臧垒.一种不定长特征模式入侵检测模型及仿真分析[J].系统仿真学报,2008,20(22):6118-6121. |
| |
| 作者姓名: | 葛方斌 杨林 王建新 臧垒 |
| |
| 作者单位: | 解放军理工大学指挥自动化学院,中国电子系统工程研究所 |
| |
| 基金项目: | 国家"863"高技术研究发展计划基金项目
|
| |
| 摘 要: | 针对定长序列模式在刻画序列特征方面的不足,提出了一种不定长序列特征模式抽取算法,并以此为基础设计了一个新的入侵检测模型。模型引入了状态转移概念并将模式匹配检测和状态转移检测结合在一起,克服了已有模型只专注于单一特征检测的缺陷。实验证实,和单特征检测相比,该模型在保证检测率的同时降低了误报率,并且检测算法的效率也是可接受的。
|
| 关 键 词: | 入侵检测 系统调用 特征模式 状态转移 |
Intrusion Detection Model Based on Variable-lengthCharacter Patterns and Its Simulating Analysis |
| |
| GE Fang-bin,YANG Lin ,WANG Jian-xin,ZANG Lei.Intrusion Detection Model Based on Variable-lengthCharacter Patterns and Its Simulating Analysis[J].Journal of System Simulation,2008,20(22):6118-6121. |
| |
| Authors: | GE Fang-bin YANG Lin WANG Jian-xin ZANG Lei |
| |
| Institution: | GE Fang-bin1,YANG Lin 2,WANG Jian-xin2,ZANG Lei1 |
| |
| Abstract: | An algorithm of drawing out variable-length character patterns was proposed due to the limitations of invariable-length character patterns, and based on which a new intrusion detection model was designed. The model introduced state shift concept and inosculated pattern match detection and state shift detection, which overcame the shortcoming that other models detected only using single character. The experiments show that the model detection results are satisfied, and the efficiency of algorithm is acceptable. |
| |
| Keywords: | intrusion detection system call character pattern state shift |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
