企业技术开发(学术版)
企業技術開髮(學術版)
기업기술개발(학술판)
TECHNOLOGICAL DEVELOPMENT OF ENTERPRISE
2013年
12期
1-4
,共4页
入侵检测系统%机器学习%规则提取%性能评估
入侵檢測繫統%機器學習%規則提取%性能評估
입침검측계통%궤기학습%규칙제취%성능평고
intrusion detection system%machine learning%rule extraction%performance analysis
随着网络技术的快速发展,网络恶意攻击方式也逐渐增多,入侵检测系统被开发用于监控和预警企业网络运行状态,保证企业计算机系统的安全。由于现有自适应动态捕获恶意网络数据流的入侵检测系统通常会占用较大的计算机系统资源,为此,文章基于机器学习方法预测网络用户行为和网络数据流分类,针对采用的代表性方法进行对比研究和性能评估,提出能动态适应网络运行状况的轻量级入侵检测系统规则提取技术。
隨著網絡技術的快速髮展,網絡噁意攻擊方式也逐漸增多,入侵檢測繫統被開髮用于鑑控和預警企業網絡運行狀態,保證企業計算機繫統的安全。由于現有自適應動態捕穫噁意網絡數據流的入侵檢測繫統通常會佔用較大的計算機繫統資源,為此,文章基于機器學習方法預測網絡用戶行為和網絡數據流分類,針對採用的代錶性方法進行對比研究和性能評估,提齣能動態適應網絡運行狀況的輕量級入侵檢測繫統規則提取技術。
수착망락기술적쾌속발전,망락악의공격방식야축점증다,입침검측계통피개발용우감공화예경기업망락운행상태,보증기업계산궤계통적안전。유우현유자괄응동태포획악의망락수거류적입침검측계통통상회점용교대적계산궤계통자원,위차,문장기우궤기학습방법예측망락용호행위화망락수거류분류,침대채용적대표성방법진행대비연구화성능평고,제출능동태괄응망락운행상황적경량급입침검측계통규칙제취기술。
With the rapid development of network technology,there are emerging variously malicious attack over networks.Therefore, kinds of Intrusion Detection System (IDS)are designed and implemented to secure enterprise computer systems by monitoring and predicting the network status.However,most existing dynamic IDS is inclined to be heavy on computer resources when detecting the malicious network traffic.This paper predicts the user behavior and categorized traffic based on representative machine learning approaches,proposes a rule extraction benefit for developing a light and adaptable IDS,and concludes the results from the performances produced by those approaches.