Abstract:
Intrusion prevention system is a new information security technology which can supply a gap of the firewall and the intrusion detection system in the information security domain. As work in-line, IPS faces with many challenges, such as bottleneck of data detection, false negative and false positive. This paper proposes a new way trying to solve these problem, which is called Adaptive Intrusion Prevention System co-stimulated by Danger Signal(DSAIPS). Experiments show the primary effects.
Key words:
intrusion prevention,
danger detection,
adaptation
摘要: 入侵防御系统是网络安全领域为弥补防火墙及入侵检测系统的不足而发展起来的一种计算机信息安全技术。其嵌入式的工作方式,使其面临许多挑战,如数据流检测瓶颈、误报和漏报等。该文陈述基于粗糙集理论的危险评测方法和该信号的协同作用下防御及检测器的进化机制。提出以通过评估保护对象所受危险并以此信号协同检测的防御方法,可以提高检测效率和防御效果,降低误报和漏报。
关键词:
入侵防御,
危险检测,
自适应
CLC Number:
XU Hui; XU Chen; CHENG Xue-yun; PENG Zhi-juan. Research and Design of Adaptive Intrusion Prevention System for Co-stimulated by Danger Signals[J]. Computer Engineering, 2009, 35(2): 172-174,.
徐 慧;徐 晨;程学云;彭志娟. 危险信号协同作用的自适应IPS研究与设计[J]. 计算机工程, 2009, 35(2): 172-174,.