| 一种基于CIDF的入侵检测系统模型 |
| |
| 引用本文: | 陈晓苏,宁翔,肖道举. 一种基于CIDF的入侵检测系统模型[J]. 华中科技大学学报(自然科学版), 2002, 30(3): 1-3,18 |
| |
| 作者姓名: | 陈晓苏 宁翔 肖道举 |
| |
| 作者单位: | 华中科技大学计算机科学与技术学院,430074 |
| |
| 摘 要: | 给出了一种基于CIDF的入侵检测模型,该模型同时运用异常检测与特征检测,能够较好地检测到各种攻击,而且可以在有噪声数据的情况下对系统进行训练,克服了一般的基于异常检测的入侵检测系统要求在无噪声数据的情况下进行训练的缺陷。通过CIDF通信协议,入侵检测系统还可以与其他的入侵检测系统通信,实现多个入侵检测系统协同工作,大大提高了入侵检测的效率和成功性。
|
| 关 键 词: | 入侵检测系统 网络安全 CIDF协议 异常检测 特征检测 服务请求机制 |
| 文章编号: | 1671-4512(2002)03-0001-03 |
A kind of intrusion detection system model based on CIDF |
| |
| Chen Xiaosu Ning Xiang Xiao Daoju College of Computer Sci. , Tech.,Huazhong Univ. of Sci. , Tech.,Wuhan ,China.. A kind of intrusion detection system model based on CIDF[J]. JOURNAL OF HUAZHONG UNIVERSITY OF SCIENCE AND TECHNOLOGY.NATURE SCIENCE, 2002, 30(3): 1-3,18 |
| |
| Authors: | Chen Xiaosu Ning Xiang Xiao Daoju College of Computer Sci. & Tech. Huazhong Univ. of Sci. & Tech. Wuhan China. |
| |
| Affiliation: | Chen Xiaosu Ning Xiang Xiao Daoju College of Computer Sci. & Tech.,Huazhong Univ. of Sci. & Tech.,Wuhan 430074,China. |
| |
| Abstract: | This article puts forward a kind of intrusion detection system model based on CIDF. The intrusion detection system employs both behavior based anomaly detection and knowledge based signature detection, so the system can detect most kinds of system intrusion and the user can train the system over the noisy data. The system gets rid of the limitation of people who can only train the system with no intrusion data, which is the requirement of the average intrusion detection system based on anomaly detection. With the help of CIDF communication protocol, the intrusion system can communicate with other intrusion detection system effectively, indicating that a group of intrusion detection systems can work cooperatively, the efficiency of the system and its availability can be improved. |
| |
| Keywords: | network security intrusion detection CIDF |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
