期刊文献+
任意字段
题名或关键词
题名
关键词
文摘
作者
第一作者
机构
刊名
分类号
参考文献
作者简介
基金资助
栏目信息

新的入侵检测数据融合模型——IDSFP 被引量:15

New data fusion model of intrusion detection——IDSFP
下载PDF
导出
摘要 以多传感器数据融合技术为基础,提出了新的入侵检测融合模型——IDSFP。其具有对多个IDS入侵检测系统的警报进行关联、聚合,产生对安全态势判断的度量,从而构成证据的特点。IDSFP应用D-S证据理论来形成对当前安全态势进行评估的信息,并动态地反馈、调整网络中各个IDS(intrusiondetectionsystem),加强对与攻击意图有关的数据的检测,进而提高IDS检测效率,降低系统的误报率和漏报率。 Based on multi-sensor data fusion technology, a new intrusion detection data fusion model-IDSFP was presented. The model was characterized by correlating and merging alerts of different types of IDS, generating the measures of the security situation, thus constituting the evidence. Current security situation of network was evaluated by applying the D-S evidence theory, and various IDS of network were adjusted dynamically to strengthen the detection of the data which relates to the attack attempt. Consequently, the false positive rate and the false negative rate are effectively reduced, and the detection efficiency of IDS is accordingly improved.
作者 田俊峰 赵卫东 杜瑞忠 蔡红云
机构地区 河北大学数学与计算机学院
出处 《通信学报》 EI CSCD 北大核心 2006年第6期115-120,共6页 Journal on Communications
基金 河北省自然科学基金资助项目(F2004000133)~~
关键词 网络安全 入侵检测 警报关联 数据融合 D-S证据理论 态势分析 network security intrusion detection alert correlation data fusion D-S evidence theory situation analysis
分类号 TP393.08 [自动化与计算机技术—计算机应用技术]
  • 相关文献

参考文献10

  • 1CUPPEN F.Managing alerts in a multi-intrusion detection environment[A].Proceedings of the 17th Annual Computer Security Applications Conference[C].2001.22-32.
  • 2BASS T.Intrusion detection systems and multisensor data fusion[J].Communications of the ACM,2000,43(4):99-105.
  • 3BASS T,ROAD S.Multisensor data fusion for next generation distributed intrusion detection systems[A].IRIS National Symposium Draft[C].1999.24-27.
  • 4VAIDES A,SKINNER K.Probabilistic alert correlation[A].Proceedings of the 4th International Symposium on Recent Advances in Intrusion Detection[C].2001.54-68.
  • 5BURROGHS D J,WILSON L F,CYBENKO G V.Analysis of distributed intrusion detection systems using bayesian methods[A].Proceedings of IEEE International Performance Computing and Communication Conference[C].2002.239-334.
  • 6包家庆,李祥和,薛华.智能化入侵检测技术[J].计算机工程,2003,29(17):133-135. 被引量:3
  • 7姜建国,范晓岚.Cyber IDS——新一代的入侵检测系统[J].计算机工程与应用,2003,39(19):176-179. 被引量:4
  • 8罗光春,卢显良,张骏,李炯.基于多传感器数据融合的入侵检测机制[J].电子科技大学学报,2004,33(1):71-74. 被引量:9
  • 9CURRY D,DEBAR H.Intrusion detection message exchange format data model and extensible markup language (XML) document type definition[A].Internet-Draft[C].2003.21-26.
  • 10蓝金辉,马宝华,蓝天,周兆英.D-S证据理论数据融合方法在目标识别中的应用[J].清华大学学报(自然科学版),2001,41(2):53-55. 被引量:79

二级参考文献17

  • 1潘震中.多传感器信息融合的谢佛-登普斯特方法[J].火力与指挥控制,1994,19(3):12-16.
  • 2[1]Tenney R R, Sandell N S R. Detection with distributed Sensors[J]. IEEE Transaction. AES., 1981, 17 (4): 501-509
  • 3[2]Chair Z, Varshney P K. Optimal data fusion multiple sensor detection system[J]. IEEE Transaction. AES. 1986, 22 (1): 99-101
  • 4[3]Baek W, Bommareddy S. Optimal m-ary data fusion with distributed sensors[J]. IEEE Transaction. AES. 1986, 31(1): 1150-1152
  • 5[4]Kam M, Zhu Q, Gray W W. Optimal data fusion of correlated local decistions in multiple sensor detection systems[J]. IEEE Transaction. AES, 1988, 18(5): 916-920
  • 6[5]Thomopoulos S C A , Viswanathan R, Bougoulias D C. Optimal decision fusion in multiple sensor detection systems[J]. IEEE Transaction. AES,1992, 28(3): 644-653
  • 7[6]Chair Z, Varshney P K. Distributed bayesian hypothesis testing with distributed data Fusion[J]. IEEE Transaction. SMC.,1988, 18(5): 695-699
  • 8Ptacek T H,Newsham T N.Insertion,Evasion,and Denial of Service: Eluding Network Intrusion Detection[M].Secure Networks Inc,1998.
  • 9Bass T.Intrusion Detection Systems and Multisensor Data Fusion: Creating Cyberspace Situational Awareness.Communications of the ACM Forthcoming, 1999.
  • 10Bass T.Muhisensor Data Fusion for Next Generation Distributed Intrusion Detection Systems[C].In:1999 IRIS National Symposium on Sensor and Data Fusion, 1999-05.

共引文献91

同被引文献117

引证文献15

二级引证文献45

通信学报
2006年 第6期

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部