通信学报
通信學報
통신학보
JOURNAL OF CHINA INSTITUTE OF COMMUNICATIONS
2013年
9期
168-178
,共11页
张玲%白中英%罗守山%谢康%崔冠宁%孙茂华
張玲%白中英%囉守山%謝康%崔冠寧%孫茂華
장령%백중영%라수산%사강%최관저%손무화
粗糙集%人工免疫%误用检测%异常检测%RSAI-IID模型
粗糙集%人工免疫%誤用檢測%異常檢測%RSAI-IID模型
조조집%인공면역%오용검측%이상검측%RSAI-IID모형
rough set%artificial immune system%misuse detection%anomaly detection%integrated intrusion detection model based on rough set and artificial immune
针对当前入侵检测存在的问题,通过引入粗糙集方法,综合误用检测和异常检测设计了一种基于粗糙集和人工免疫的集成入侵检测(RSAI-IID)模型,提出了一种在入侵检测中实现疫苗注入的方法。采用粗糙集方法获取疫苗,并保证了疫苗的优良性,优化检测性能;误用检测筛掉已知的入侵行为,提高检测的速度;异常检测针对未知攻击进行实时检测。最后在KDD99数据集上进行实验仿真,验证了模型的可行性和有效性。
針對噹前入侵檢測存在的問題,通過引入粗糙集方法,綜閤誤用檢測和異常檢測設計瞭一種基于粗糙集和人工免疫的集成入侵檢測(RSAI-IID)模型,提齣瞭一種在入侵檢測中實現疫苗註入的方法。採用粗糙集方法穫取疫苗,併保證瞭疫苗的優良性,優化檢測性能;誤用檢測篩掉已知的入侵行為,提高檢測的速度;異常檢測針對未知攻擊進行實時檢測。最後在KDD99數據集上進行實驗倣真,驗證瞭模型的可行性和有效性。
침대당전입침검측존재적문제,통과인입조조집방법,종합오용검측화이상검측설계료일충기우조조집화인공면역적집성입침검측(RSAI-IID)모형,제출료일충재입침검측중실현역묘주입적방법。채용조조집방법획취역묘,병보증료역묘적우량성,우화검측성능;오용검측사도이지적입침행위,제고검측적속도;이상검측침대미지공격진행실시검측。최후재KDD99수거집상진행실험방진,험증료모형적가행성화유효성。
According to the problems of intrusion detection, an integrated intrusion detection model based on rough set and artificial immune (RSAI-IID) was proposed by using rough set and integrating misuse detection and anomaly detec-tion. The rough set method was used to achieve the vaccine which was injected in the model, to get better vaccine, and to optimum the performances of detection;misuse detection was used to get off the known intrusions; anomaly detection was used to detect the novel intrusions. RSAI-IID model was validated on KDD 99 dataset. The experimental results show its feasibility and effectiveness.