作者投稿和查稿 主编审稿 专家审稿 编委审稿 远程编辑

计算机工程 ›› 2007, Vol. 33 ›› Issue (01): 28-30. doi: 10.3969/j.issn.1000-3428.2007.01.010

• 博士论文 • 上一篇    下一篇

入侵检测系统中非完备性问题研究

孙夫雄1,黄天戍2   

  1. (1. 中南财经政法大学信息学院,武汉 430073;2. 武汉大学电子信息学院,武汉 430072)
  • 收稿日期:1900-01-01 修回日期:1900-01-01 出版日期:2007-01-05 发布日期:2007-01-05

Research on Incomplete Problem in IDS

SUN Fuxiong1, HUANG Tianshu2   

  1. (1. Institute of Information, Zhongnan University of Economics and Law, Wuhan 430073; 2. Institute of Electronic Information, Wuhan University, Wuhan 430072)
  • Received:1900-01-01 Revised:1900-01-01 Online:2007-01-05 Published:2007-01-05

摘要: 提出了一种基于免疫原理的自适应入侵检测模型IAIDM,由于训练集非完备性问题是当前入侵检测系统遭遇到的最常见的问题,因此该文结合IAIDM模型特点,对因时间因素而导致训练集非完备性问题进行了深入分析,提出了增量式动态更新算法IA,实验结果显示IA能增量式地动态更新发生变化的局部样本空间而不必更新整个样本空间,保证了IAIDM能迅速适应网络环境的变化。

关键词: 入侵检测, 自然免疫系统, 非完备性

Abstract: ID model-IAIDM(Immune-based Adaptive Intrusion Detection Model) is put forward. Because current IDS usually has a problem of incomplete training sets, this page has done the deep researches on the problem caused by the limit of training time with the feature of IAIDM. Based on it, an incremental algorithm(IA) is put forward. The experiment results demonstrate IA can update local selfspace that has changed incrementally and dynamically instead of the whole space so that IAIDM can adjust itself to the current network environment quickly.

Key words: Intrusion detection, Natural immune system, Incomplete