摘要： 分析了生物免疫病理转移造成的免疫入侵检测系统(IDS)的安全漏洞，将遗传算法应用于入侵检测分析引擎的研究与开发，结合生物免疫优良的隐喻机理设计了一类测度参数优化算法，提出一类混合入侵检测分析引擎。该方案发挥了遗传算法并行操作、全局寻优、自适应优化等特征，避免了免疫病理机制转移进入IDS造成的安全隐患以及现有入侵检测引擎虚警与误警率高的缺陷，增强了免疫IDS的实时性、健壮性、高效性、并行性和可适应性。

关键词: 遗传算法, 免疫入侵检测, 免疫病理转移, 入侵检测引擎　

Abstract: This paper analyzes security threats and system flaws arising from the transfer of disease-causing mechanisms of biological immune system into present immune IDS schemes. An algorithm for optimizing measure parameters based on genetic algorithm and biological immunology is designed together with a hybrid intrusion detection engine. The scheme precludes the security problems by utilizing the useful metaphor of biological immune system and the prominent characteristics of genetic algorithm, such as automatic optimizing, parallel operating, and has stability, adaptability, robustness and parallel operating, and adaptability.

Key words: genetic algorithm, immune intrusion detection system, transfer of pathological mechanism, instrusion detection engine

中图分类号: 

• TP309