摘要
入侵检测技术是继传统的安全保护措施之后新一代的安全保障技术,文章以入侵检测技术的国内外研究现状分析为基础,提出了一个智能化的网络入侵检测模型SmartNIDS,利用数据挖掘技术对网络行为数据进行智能检测,分析来自网络外部的入侵攻击以及内部的未授权行为,同时结合人工智能领域的规划识别方法识别攻击者的入侵意图,提供入侵检测的实时报警和主动响应。
Intrusion Detection is an essential element to an organizational information security program.This paper first introduces an overview of development,studies trend and direction of Intrusion Detection System.Then it presents an intelligent network-based intrusion detection model-SmartNIDS.In this model,it describes a data mining framework for analyzing the audit records.Meanwhile,the model combines plan recognition in Artificial Intelligence,which is important both to predict the future actions of attackers and direct appropriate responses to their actions.
出处
《计算机工程与应用》
CSCD
北大核心
2005年第16期146-149,共4页
Computer Engineering and Applications
基金
浙江省科技计划项目(编号:2004C31092)
关键词
入侵检测
IDS数据挖掘
规划识别
智能技术
intrusion detection,IDS,data Mining,plan recognition,intelligent theory
