摘要
论述入侵检测系统的基本概念 ,分析入侵检测系统 (IDS)的关键技术及存在的问题 .为了解决传统入侵检测模型所存在的问题 ,提出了一个自适应入侵检测系统 (AIDS)模型 ,阐述了系统模型的结构及主要功能 .运用自适应的模型生成方法 ,使收集数据、建立模型并将模型分配给检测器的过程高效、自动化 .该模型为开放的系统模型 ,具有很好的可伸缩性 ,可大大减少使用 IDS的代价 ,解决 IDS的环境适应性问题 ,降低建立模型的代价 ,提高系统的效率 .
The basic concepts of intrusion detection technique are discussed. The key technique and some issues on the current intrusion detection system are analyzed. In order to solve problems existing in a traditional intrusion detection systems, framework model for an adaptive intrusion detection system (AIDS) is proposed. The basic theory of the system model is introduced, and its structure and main functions analyzed. The adaptive model generation approach streamlines and automates the process of collecting data, building models, and distributing the models to detectors. The proposed model is an open system having good scalability and adaptability, and can reduce signigicantly the cost of deploying an IDS system. The problems of environment adaptability are solved, the cost of building a model is reduced, and the efficiency of the system is improved.
出处
《北京理工大学学报》
EI
CAS
CSCD
北大核心
2002年第1期72-75,共4页
Transactions of Beijing Institute of Technology
基金
高等学校博士学科点专项科研基金资助课题
