作者投稿和查稿 主编审稿 专家审稿 编委审稿 远程编辑

计算机工程

• 安全技术 • 上一篇    下一篇

基于文化算法的层次属性约减入侵检测模型

申元,高岭,高妮,王帆   

  1. (西北大学 信息科学与技术学院,西安 710069)
  • 收稿日期:2016-06-06 出版日期:2017-07-15 发布日期:2017-07-15
  • 作者简介:申元(1991—),女,硕士研究生,主研方向为网络与信息安全;高岭,教授、博士、博士生导师;高妮,博士研究生;王帆,硕士研究生。
  • 基金资助:
    国家自然科学基金(61373176,61572401);陕西省重大科技创新专项资金项目(2012ZKC05-2)。

Hierarchical Attribute Reduction Model for Intrusion Detection Based on Cultural Algorithm

SHEN Yuan,GAO Ling,GAO Ni,WANG Fan   

  1. (School of Information Science and Technology,Northwest University,Xi’an 710069,China)
  • Received:2016-06-06 Online:2017-07-15 Published:2017-07-15

摘要: 为有针对性地区分入侵攻击类别,提高入侵检测系统(IDS)整体的分类准确率,提出一种层次属性约减模型。该模型采用文化算法的双层进化思想,结合粗糙集和遗传算法进行属性约减。对数据进行预处理并分层划分子空间,形成决策子表规则集fD。运用文化算法在信念空间进行知识更新,并将层次评价知识库的进化数据传入种群空间。在种群空间利用粗糙集和遗传算法进行进化和约减,得到各层的优选属性集fopt,设计出层次Bayes分类器验证模型性能。实验结果表明,该模型可将属性约减前的Bayes分类正确率提高至98.21%,并能较好地识别出流量特征不明显的R2L,U2R类别的入侵攻击。

关键词: 入侵检测, 文化算法, 粗糙集, 遗传算法, 层次属性约减

Abstract: In order to distinguish detection attack categories pertinently and improve the classification accuracy of Intrusion Detection System (IDS),a hierarchical attributes reduction model used for IDS is proposed.This model reduces attributes by adopting dual structure of culture algorithms and combined with rough sets as well as genetic algorithm.Firstly,the data is preprocessed and divide it into hierarchies,which forms the rule of decision subset fD.Secondly,using cultural algorithm,knowledge is updated in belief space,and evolving data of hierarchical evaluation knowledge is introduced into population space.Thirdly,the optimal subser of each layer is acquired by using rough sets and genetic algorithm which can evolve knowledge and reduce attributes in belief space.Finally,model performance is verified by designing Bayes hierarchical classifier.Experimental results show that the algorithm can improve the accuracy of the Bayes classification before attributes reducting to 98.21%,and it is better to identify the intrusion categories whose traffic characteristics is not obvious such as R2L and U2R.

Key words: intrusion detection, cultural algorithm, rough set, genetic algorithm, hierarchical attribute reduction

中图分类号: