合肥工业大学学报(自然科学版)
閤肥工業大學學報(自然科學版)
합비공업대학학보(자연과학판)
JOURNAL OF HEFEI UNIVERSITY OF TECHNOLOGY(NATURAL SCIENCE)
2015年
5期
627-630,711
,共5页
王翔%胡学钢%杨秋洁
王翔%鬍學鋼%楊鞦潔
왕상%호학강%양추길
入侵检测%分类%随机森林%One-R算法%属性评价
入侵檢測%分類%隨機森林%One-R算法%屬性評價
입침검측%분류%수궤삼림%One-R산법%속성평개
intrusion detection(ID)%classification%random forest (RF)%One-R algorithm%feature e-valuation
入侵检测(ID )是保障网络安全的必要手段之一,将数据挖掘引入入侵检测中使其可以适应海量审计数据的处理,同时可以提高检测的均衡性和响应时间。文章提出了一种基于随机森林(random forest ,RF)的入侵检测模型(1R‐RF),针对RF模型面对高维网络审计数据选择属性时过度随机导致的元分类器效率不高的问题,开展了基于One‐R快速属性评价的研究。实验证明,将基于One‐R的RF用于入侵检测后有较好的时空性能、较低的误报率和漏报率,对于各种攻击行为有着较为均衡的检测率。
入侵檢測(ID )是保障網絡安全的必要手段之一,將數據挖掘引入入侵檢測中使其可以適應海量審計數據的處理,同時可以提高檢測的均衡性和響應時間。文章提齣瞭一種基于隨機森林(random forest ,RF)的入侵檢測模型(1R‐RF),針對RF模型麵對高維網絡審計數據選擇屬性時過度隨機導緻的元分類器效率不高的問題,開展瞭基于One‐R快速屬性評價的研究。實驗證明,將基于One‐R的RF用于入侵檢測後有較好的時空性能、較低的誤報率和漏報率,對于各種攻擊行為有著較為均衡的檢測率。
입침검측(ID )시보장망락안전적필요수단지일,장수거알굴인입입침검측중사기가이괄응해량심계수거적처리,동시가이제고검측적균형성화향응시간。문장제출료일충기우수궤삼림(random forest ,RF)적입침검측모형(1R‐RF),침대RF모형면대고유망락심계수거선택속성시과도수궤도치적원분류기효솔불고적문제,개전료기우One‐R쾌속속성평개적연구。실험증명,장기우One‐R적RF용우입침검측후유교호적시공성능、교저적오보솔화루보솔,대우각충공격행위유착교위균형적검측솔。
The intrusion detection(ID) is one of the critical techniques to protect the security of net‐work .The intrusion detection model becomes more proper to process large amount of audit data and achieves balanced detecting performance and low corresponding time by data mining technique intro‐duced .In this paper ,a novel intrusion detection model based on the random forest (1R‐RF ) is pro‐posed .Aiming at improving the base tree’s performance of RF w hen over‐randomly selecting features from high dimensional audit data ,the algorithm for feature selection based on One‐R(1R) is studied . The experimental results show that the 1R‐RF intrusion detection model has good space‐time perform‐ance and has lower rates of false and loss alarms .Additionally ,this model has balanced detecting per‐formance with regard to various intrusion attacks .
