计算机技术与发展
計算機技術與髮展
계산궤기술여발전
COMPUTER TECHNOLOGY AND DEVELOPMENT
2014年
2期
160-163
,共4页
段惠超%王丽侠%潘旭%钟浙云
段惠超%王麗俠%潘旭%鐘浙雲
단혜초%왕려협%반욱%종절운
入侵检测系统%带权模式匹配%自动机%报警系统
入侵檢測繫統%帶權模式匹配%自動機%報警繫統
입침검측계통%대권모식필배%자동궤%보경계통
intrusion detection system%weighted patterns matching%automata%alarm system
入侵检测系统(IDS)需要根据每个模式串的权值,计算给定主串的总权值并反馈给报警系统。传统的模式匹配算法在计算主串权值时效率低。为此,文中在Aho-Corasick算法的基础上,提出了带权模式匹配算法(WPM)及其改进算法(WPME)。算法优化了自动机的建立过程,对自动机每个节点的失配后继指针信息和匹配量信息进行预处理,从而避免了模式匹配阶段在计算主串权值时的回溯操作,降低了算法的时间复杂度。实验表明,改进后的算法具有效率高、匹配精确的特点。
入侵檢測繫統(IDS)需要根據每箇模式串的權值,計算給定主串的總權值併反饋給報警繫統。傳統的模式匹配算法在計算主串權值時效率低。為此,文中在Aho-Corasick算法的基礎上,提齣瞭帶權模式匹配算法(WPM)及其改進算法(WPME)。算法優化瞭自動機的建立過程,對自動機每箇節點的失配後繼指針信息和匹配量信息進行預處理,從而避免瞭模式匹配階段在計算主串權值時的迴溯操作,降低瞭算法的時間複雜度。實驗錶明,改進後的算法具有效率高、匹配精確的特點。
입침검측계통(IDS)수요근거매개모식천적권치,계산급정주천적총권치병반궤급보경계통。전통적모식필배산법재계산주천권치시효솔저。위차,문중재Aho-Corasick산법적기출상,제출료대권모식필배산법(WPM)급기개진산법(WPME)。산법우화료자동궤적건립과정,대자동궤매개절점적실배후계지침신식화필배량신식진행예처리,종이피면료모식필배계단재계산주천권치시적회소조작,강저료산법적시간복잡도。실험표명,개진후적산법구유효솔고、필배정학적특점。
Intrusion Detection System (IDS) needs to calculate the total weight of the main string and send the result to the alarm system based on the weight of each pattern string. A Weighted Patterns Matching (WPM) algorithm is proposed,which is efficient on receiving the weight of the main string based on AC algorithm. The proposed algorithm achieves information such as the subsequence pointers and matching times for each state during building automata. Therefore,the proposed algorithm reduces the time complexity by reducing the backtracking times when calculating the total weight of the main string in pattern matching stage. Experimental results show that the algo-rithm has advantages in efficiency,matching accuracy.
