摘要： 分析遗传算法在入侵检测系统中的可应用情况，提出一种基于粗粒度模型遗传算法的网络入侵检测系统。通过对协议特征的分析，找出有可能被非法利用和更改的特征属性，经过组合和编码后构成系统的初始种群，在各个处理器(终端点)并行地进行遗传算法的操作，使种群的进化在所有检测点同时进行，通过迁移相互交流，合理地设计适应度函数，使遗传“基因”的取舍和利用更加合理。实验数据表明，系统的检测率达到90%以上。

关键词: 网络入侵检测系统, 遗传算法, 种群, 适应度函数, 粗粒度模型

Abstract: This paper puts forward a Network Intrusion Detection System(NIDS) based on coarse-grained model genetic algorithm, after analysing the application of genetic algorithm in intrusion detection system. By analysing the protocol’s property, finds out some characteristics which are often lawlessly changed and used, forms the original chromosome by assembling and coding, makes all processor(terminal points)carry genetic process by attributed manner, makes the evolution of chromosomes prosecute in all detection points simultaneity, and all processor can intercommunacate by transplanting too. At the same time, redesign a reasonable fitness function, to let the use of “gene” be more reasonable. Experimental data shows the system’s detection ability is above 90%.

Key words: Network Intrusion Detection System(NIDS), Genetic Algorithm(GA), chromosomes, fitness function, coarse-grained model

中图分类号: 

• TP393