An immunity based network security risk estimation 被引量：30

An immunity based network security risk estimation

导出

摘要 According to the relationship between the antibody concentration and the pathogen intrusion intensity, here we present an immunitybased model for the network security risk estimation （Insre）. In Insre, the concepts and formal definitions of self, nonself, antibody, antigen and lymphocyte in the network security domain are given. Then the mathematical models of the selftolerance, the clonal selection, the lifecycle of mature lymphocyte, immune memory and immune surveillance are established. Building upon the above models, a quantitative computation model for network security risk estimation, which is based on the calculation of antibody concentration, is thus presented. By using Insre, the types and intensity of network attacks, as well as the risk level of network security, can be calculated quantitatively and in real-time. Our theoretical analysis and experimental results show that Insre is a good solution to real-time risk evaluation for the network security. According to the relationship between the antibody concentration and the pathogen intrusion intensity, here we present an immunitybased model for the network security risk estimation （Insre）. In Insre, the concepts and formal definitions of self, nonself, antibody, antigen and lymphocyte in the network security domain are given. Then the mathematical models of the selftolerance, the clonal selection, the lifecycle of mature lymphocyte, immune memory and immune surveillance are established. Building upon the above models, a quantitative computation model for network security risk estimation, which is based on the calculation of antibody concentration, is thus presented. By using Insre, the types and intensity of network attacks, as well as the risk level of network security, can be calculated quantitatively and in real-time. Our theoretical analysis and experimental results show that Insre is a good solution to real-time risk evaluation for the network security.

作者 LI Tao

机构地区 Department of Computer Science

出处《Science in China(Series F)》 2005年第5期557-578,共22页 中国科学（F辑英文版）

基金 the National Natural Science Foundation of China(Grant No 60373110) Specialized Research Fund for the Doctoral Program of Higher Education of China(Grant No 20030610003) New Century Excellent Expert Program of Ministry of Ed ucation of China(Grant No 20030610003) the Innovation Foundation of Sichuan University(Grant No.2004CF10).

关键词 artificial immune system intrusion detection network security risk estimation artificial immune system, intrusion detection, network security, risk estimation

分类号 TP393.08 [自动化与计算机技术—计算机应用技术]

引文网络
相关文献

参考文献2

1焦李成,杜海峰.人工免疫系统进展与展望[J].电子学报,2003,31(10):1540-1548. 被引量：224
2肖人彬,王磊.人工免疫系统:原理、模型、分析及展望[J].计算机学报,2002,25(12):1281-1293. 被引量：209

二级参考文献114

1戴汝为,王珏.关于智能系统的综合集成[J].科学通报,1993,38(14):1249-1256. 被引量：52
2戴汝为,王珏.巨型智能系统的探讨[J].自动化学报,1993,19(6):645-655. 被引量：39
3陆德源.现代免疫学[M].上海:上海科学技术出版社,1998.14-16. 被引量：8
4学科交叉和技术应用专门小组(美).学科交叉和技术应用[R].北京:科学出版社,1994.43. 被引量：1
5HanJiawei Kamber M 范明等译.数据挖掘:概念与技术[M].北京:机械工业出版社,2001.. 被引量：6
6M N O Sadiku. Artificial Intelligence [ J ]. IEEE Potentials, 1989, 8(2) :35 - 39. 被引量：1
7R J Patton, C J Lopez-Toribio, F J Uppal. Artificial intelligence approaches to fault diagnosis[ A]. IEE Colloquium on Condition Monitoring :Machinety, External Structures and Health (Ref. No. 1999/034)[ C]. London:The Institute of Electrical Eagineers, 1999.5/1 - 5/18. 被引量：1
8R Orwig, H Chen, D Vogel, et al. A multi-agent view of strategic planning using group support systems and artificial intelligence [J]. Group Decision and Negotiation, 1997,6( 1 ) : 37 - 59. 被引量：1
9A Christopher, Welty, G Peter, Selfridge. Artificial intelligence and software engineering: Breaking the toy mold [ J ]. Automated Software Engineering. 1997,4(3) :255 - 270. 被引量：1
10Donald Gillies. Book review: Artificial intelligence and scientific method [ J]. Journal of Intelligent and Robotic Systems. 1998,22( 1 ) :87-95. 被引量：1

共引文献391

1熊孝波,桂国庆,郑明新,许建聪,马淑芝.基于免疫RBF神经网络的深基坑施工变形预测[J].岩土力学,2008(S01):598-602. 被引量：2
2陈虹,周锦春,刘熹.基于人工免疫的入侵检测系统研究与实现[J].商场现代化,2007(36):28-30.
3刘芳,李阳阳.量子克隆进化算法[J].电子学报,2003,31(z1):2066-2070. 被引量：11
4周宣武,杨晓元,王伟,邓涛.基于生物免疫学的入侵检测系统研究[J].大连理工大学学报,2003,43(z1):77-80. 被引量：6
5张海燕,李庆忠.基于免疫遗传算法的弹性参数变化率反演[J].石油地球物理勘探,2008,43(6):704-710. 被引量：1
6王杰,陈晨,王同军.基于免疫Multi-Agent的入侵防御模型及其实现[J].微电子学与计算机,2009,26(2):178-183.
7唐正,胡珉.空间自适应免疫克隆选择优化算法[J].计算机应用,2009,29(2):561-564. 被引量：5
8符保龙,黄崇争.基于免疫遗传退火算法的Web关联规则挖掘方法[J].计算机应用研究,2009,26(2):478-480. 被引量：3
9李小勇,黄汉明,龙文,时丽娜,曾行高.一种改进的多模态函数优化的免疫算法[J].广西物理,2009,30(1):16-19.
10刘强,王艳秋,张健.人工免疫聚类算法在交通时段自动划分上的应用[J].自动化博览,2008,25(2):64-67. 被引量：1

同被引文献270

1刘宗新,王丹伟,张迪超,徐世录.红外传感器技术的军事应用与分析[J].红外与激光工程,2007,36(z2):600-605. 被引量：3
2冯登国,张阳,张玉清.信息安全风险评估综述[J].通信学报,2004,25(7):10-18. 被引量：308
3刘勃,周荷琴.基于贝叶斯网络的网络安全评估方法研究[J].计算机工程,2004,30(22):111-113. 被引量：15
4陈秀真,郑庆华,管晓宏,林晨光.基于粗糙集理论的主机安全评估方法[J].西安交通大学学报,2004,38(12):1228-1231. 被引量：12
5梁可心,李涛,刘勇,陈桓.一种基于人工免疫理论的新型入侵检测模型[J].计算机工程与应用,2005,41(2):129-132. 被引量：13
6陆余良,夏阳.主机安全量化融合模型研究[J].计算机学报,2005,28(5):914-920. 被引量：28
7DUHaifeng,GONGMaoguo,JIAOLicheng,LIURuochen.A novel algorithm of artificial immune system for high-dimensional function numerical optimization[J].Progress in Natural Science:Materials International,2005,15(5):463-471. 被引量：18
8王益丰,李涛,胡晓勤,宋程.一种基于人工免疫的网络安全实时风险检测方法[J].电子学报,2005,33(5):945-949. 被引量：30
9刘利军,怀进鹏.一种IDS报警过滤算法及实现架构研究[J].高技术通讯,2005,15(6):1-4. 被引量：1
10莫宏伟,唐娜,金鸿章,徐立芳,吕淑萍,管凤旭.免疫阴性选择分类器在信息恢复中的应用[J].计算机学报,2005,28(8):1314-1319. 被引量：7

引证文献30

1王峰,曼丽春,肖逸军,王邦平,张秀琼.基于免疫数值归约方法的车牌颜色识别算法[J].四川大学学报（工程科学版）,2008,40(5):164-170. 被引量：1
2LI Tao.An immune based dynamic intrusion detection model[J].Chinese Science Bulletin,2005,50(22):2650-2657. 被引量：17
3孙飞显,刘晓洁,李涛,曾金全,杨频,彭凌西.基于家族基因的网络身份认证模型[J].小型微型计算机系统,2007,28(4):589-593.
4孙飞显,刘晓洁,李涛,赵奎,胡晓勤,曾金全.基于家族基因的网络访问控制模型[J].计算机工程,2007,33(12):37-39.
5孙飞显,刘晓洁,李涛,杨进,倪建成,龚勋.一种基于免疫的Web发现方法[J].计算机工程,2007,33(3):144-146.
6彭凌西,陈月峰,刘才铭,曾金全,刘孙俊,赵辉.基于危险理论的网络风险评估模型[J].电子科技大学学报,2007,36(6):1198-1201. 被引量：12
7彭凌西,刘晓洁,李涛,卢正添,曾金全,刘才铭.一种基于免疫的监督式分类算法[J].四川大学学报（工程科学版）,2008,40(2):101-106. 被引量：4
8杨进,刘晓洁,李涛,蒋亚平,龚勋,刘孙俊,梁刚.人工免疫中匹配算法研究[J].四川大学学报（工程科学版）,2008,40(3):126-131. 被引量：6
9张莉莎,孙正兴.面向在线图符识别的免疫克隆选择算法[J].软件学报,2008,19(7):1654-1665. 被引量：2
10孙飞显,王文奇,郑秋生,曾金全,夏冰.一种基于基因证书的身份鉴别方法[J].计算机应用研究,2008,25(8):2454-2456.

二级引证文献133

1王杰,陈晨,王同军.基于免疫Multi-Agent的入侵防御模型及其实现[J].微电子学与计算机,2009,26(2):178-183.
2孙飞显,刘晓洁,李涛,曾金全,杨频,彭凌西.基于家族基因的网络身份认证模型[J].小型微型计算机系统,2007,28(4):589-593.
3刘才铭,张雁,赵辉,彭凌西,曾金全.多级免疫检测器集在分布式入侵检测中的应用[J].电子科技大学学报,2007,36(6):1179-1182. 被引量：2
4曾金全,赵辉,刘才铭,彭凌西.受免疫原理启发的Web攻击检测方法[J].电子科技大学学报,2007,36(6):1215-1218. 被引量：4
5梁刚,刘晓洁,李涛,蒋亚平,杨进,龚勋.NSC:一种新型的垃圾邮件过滤器[J].小型微型计算机系统,2008,29(1):158-161. 被引量：5
6彭凌西,刘晓洁,李涛,卢正添,曾金全,刘才铭.一种基于免疫的监督式分类算法[J].四川大学学报（工程科学版）,2008,40(2):101-106. 被引量：4
7刘才铭,赵辉,张雁,曾友州,胡莹,彭凌西,曾金全.基于免疫的多通道入侵防御模型[J].计算机应用研究,2008,25(6):1846-1849. 被引量：3
8付玉珍,胡彧,张清华.一种新的自适应网络入侵检测模型[J].计算机技术与发展,2008,18(9):148-150. 被引量：2
9张正球,姚志强,颜西山,张金颖.适应性免疫的轻量级网络入侵检测算法[J].江西师范大学学报（自然科学版）,2008,32(6):724-728. 被引量：1
10杨东勇,陈晋音.基于多种群遗传算法的检测器生成算法研究[J].自动化学报,2009,35(4):425-432. 被引量：15

1王祯学,戴宗坤,肖龙,王标.信息系统风险评估的数学方法[J].四川大学学报（自然科学版）,2004,41(5):991-994. 被引量：13
2苟光磊,成卫,倪伟.网络与信息安全的风险评估及管理[J].重庆工学院学报,2007,21(17):133-137. 被引量：6
3Ming Zhao Zhigang Chen Guosheng Huang.A Novel PSO-based Algorithm for Diverse Antibody Generating[J].通讯和计算机（中英文版）,2005,2(9):54-57.
4Adobe推工作流软件新品[J].网管员世界,2005(10):33-33.
5Russell Smith 黄永兵(译).身份生命周期管理器ILM2介绍[J].Windows IT Pro Magazine（国际中文版）,2010(7):55-58.
6Brian Komar 刘海蜀(译).IDENTITY LIFECYCLE MANAGER 2007初探[J].Windows IT Pro Magazine（国际中文版）,2007(8):6-12.
7Ruo-Chen Liu,Li-Cheng Jiao,Hai-Feng Du.Clonal Strategy Algorithm Based on the Immune Memory[J].Journal of Computer Science & Technology,2005,20(5):728-734. 被引量：7
8YU Shan Fa,NAKATA Akinori,GU Gui Zhen,SWANSON Naomi G,ZHOU Wen Hui,HE Li Hua,WANG Sheng.Co-effect of Demand-control-support Model and Effort-reward Imbalance Model on Depression Risk Estimation in Humans: Findings from Henan Province of China[J].Biomedical and Environmental Sciences,2013,26(12):962-971. 被引量：8
9Ziyan Shi Guolin Zhao Qiaolin Hu.A Design of the Network Security Evaluation System[J].International Journal of Technology Management,2014(9):103-105.
10WANG Kun,SU Rui-dan,LI Zeng-xin,CAI Zhen,ZHOU Li-hua.Robust Disaster Recovery System Model[J].Wuhan University Journal of Natural Sciences,2006,11(1):170-174. 被引量：2

Science in China(Series F)

2005年第5期

浏览历史

内容加载中请稍等...