检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
机构地区:[1]中国民用航空局第二研究所,四川成都610041 [2]西南交通大学信息科学与技术学院,四川成都610031
出 处:《计算机技术与发展》2011年第8期237-240,共4页Computer Technology and Development
基 金:中国民用航空局科研项目(MHRD200924)
摘 要:在分析了现有的入侵检测方法的基础上,为了降低入侵检测系统的错检率、降低漏检率和提高实时性,提出了一种新的检测方法:基于新的条件熵的入侵检测算法。本算法在考虑信息论有关理论的基础上,利用信息熵的知识对收集到的数据进行离散化。通过分析离散化后的数据,利用新的条件熵的知识约简方法去除冗余属性,生成检测规则,然后用来分析入侵数据。实验结果表明:基于新的条件熵的入侵检测算法与基于BP神经网络和支持向量机的入侵检测算法比较,可以有效地提高入侵检测系统的检测率,降低错检率。该算法的检测率提高7%左右,能为信息系统提供很好的入侵检测服务。Based on the analysis of the current intrusion detection approaches,existing security detection systems have many problems such as wrong detection of intrusions,missed intrusions,poor real-time performance,bring up a new detection method,namely adaptive intrusion detection algorithm based on new conditional entropy.In considering the theories related to information theory,this algorithm firstly discrete the collected data use the knowledge of information entropy,then analyze the discrete data,remove the redundant attributes by reduction method related to conditional entropy knowledge,finally generate a new detection rules for the further analysis of intrusion data.The experimental result shows that is more efficient than algorithms based on BP neural networks and vector machines;thereby,this detection algorithm can effectively improve the intrusion detection system's detection rate,and reduce the error detection rate,and this detection algorithm can improve the detection ratio by about 7% and reduce the wrong detection ratio.The system provides detection service effective for information systems,as well.
分 类 号:TP393.08[自动化与计算机技术—计算机应用技术]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.15