异常入侵检测系统虚警率问题研究

计算机科学 ›› 2009, Vol. 36 ›› Issue (11): 68-70.

• 计算机网络与信息安全 • 上一篇下一篇

异常入侵检测系统虚警率问题研究

柴争义,汪宏海

(河南工业大学信息科学与工程学院郑州450001);(西安电子科技大学计算机学院西安710071);(赣南教育学院计算机系赣州341000)

出版日期:2018-11-16 发布日期:2018-11-16
基金资助:
本文受国家自然科学基金(60473021),河南省自然科学基金项目(082400440260,2008AA180041)资助。

Study of Anomaly Intrusion Detection System on False Positive Rate

CHAI Zheng-yi, WANG Hong-hai

Online:2018-11-16 Published:2018-11-16

摘要/Abstract

摘要： 入侵检测系统的虚警率影响检测结果的可信性。通过分析入侵检测系统的可信问题及异常入侵检测系统的虚警率问题，提出了降低虚警率的方法:基于进程检测行为的入侵检测方法、多检测系统协作工作模式。重点描述了基于人工免疫思想，动态构建正常系统轮廓，抑制虚警率的方法，并对其进行了仿真实验。实验表明，本方法可以提高检测效率，有效降低系统虚警率。

关键词: 异常入侵检测，虚警率，人工免疫，进程行为

Abstract: False positive rate of intrusion detection systems (IDS) affect the detection creditability. Methods to reduce the false positive rate were presented after analyzing creditability of IDS and false positive rate of anomaly IDS. It put methods include the followings; method based on process detection, multi-detection system model. It put emphasis on constructing normal profile dynamically based on artificial immunity to restrain false positive rate, then simulation experiment was done. The results show that the method can improve the detection efficiency and reduce the false positive rate.

Key words: Anomaly intrusion detection, False positive rate, Artificial immunity, Process behaviors

柴争义,汪宏海. 异常入侵检测系统虚警率问题研究[J]. 计算机科学, 2009, 36(11): 68-70. https://doi.org/

CHAI Zheng-yi, WANG Hong-hai. Study of Anomaly Intrusion Detection System on False Positive Rate[J]. Computer Science, 2009, 36(11): 68-70. https://doi.org/

参考文献

Metrics

Viewed

Full text

Abstract

Cited

Shared

Discussed

异常入侵检测系统虚警率问题研究

Study of Anomaly Intrusion Detection System on False Positive Rate

PDF (PC)

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 0

Metrics

本文评价

推荐阅读 0