摘要
从入侵检测技术的基本概念出发,着重讨论了入侵检测系统构造所涉及的关键技术,并提出了一个基于数据仓库的入侵检测系统通用模型;总结并评述了具有代表性的基于主机的入侵检测技术、基于网络的入侵检测技术和相关工具;探讨了入侵检测系统构造研究中存在的一些问题及相应的解决方案。
Based on the concept of intrusion detection techniques, some key techniques for intrusion detection system were discussed, and a general model of intrusion detection system based on data warehouse was proposed. The host-based intrusion detection techniques and network-based intrusion detection techniques were also summarized and reviewed. Some current issues of intrusion detection system and corresponding solutions were explored.
出处
《计算机工程与设计》
CSCD
2004年第3期390-393,共4页
Computer Engineering and Design
