计算机科学 ›› 2006, Vol. 33 ›› Issue (5): 117-120.
• • 上一篇 下一篇
出版日期:
发布日期:
基金资助:
Online:
Published:
摘要: 本文在入侵检测系统(IDS)中引入基于案例的推(CBR)来降低基于规则的精确匹配所造成的漏报率,有效地检测由已知攻击变异成的攻击。描述了实现CBR的步骤;给出了由规则设计和构造案例库的启发式方法;分析了实现CBR的有关算法;最后给出在入侵检测系统Snort上扩充CBR功能的实验结果。
关键词: 入侵检测,规则, 推理,Snort 网络安全
Abstract: In this paper the case-based reasoning (CBR) is introduced to reduce the false negative rate caused by rulebased precise matching in intrusion detection system and to detect the variation of known attack. The steps of implementing CBR are described, sever
Key words: Intrusion detection, Rule, Case-based reasoning, Snort
. 基于规则的IDS中的CBR研究[J]. 计算机科学, 2006, 33(5): 117-120. https://doi.org/
0 / / 推荐
导出引用管理器 EndNote|Reference Manager|ProCite|BibTeX|RefWorks
链接本文: https://www.jsjkx.com/CN/
https://www.jsjkx.com/CN/Y2006/V33/I5/117
Cited
首页