摘要
网络入侵检测需要综合考虑各方面的因素,这不仅会带来极大的计算开销,而且由于证据的不确定性,很难准确做出直接的判断。网络入侵行为特征的描述是设计入侵检测系统的前提和关键,而它往往又是研究入侵检测技术的难点。模糊综合评判是在证据不确定的条件下,综合考虑系统各方面的因素,来判决一个网络访问连接是否为攻击。由此得出的基于模糊推理的网络入侵检测方法使得推理过程计算简单,同时也具有更强的描述能力。
Intrusion detection is a comprehensive process, which not only consumes great system resources, but results in complicatedly making decisions because of its uncertain factors. Representing intrusion signatures is the premise and a difficult task while designing the intrusion detection system. Based on the fuzzy factors, fuzzy comprehensive evaluation can effectively handle the network connection. An approach for network intrusion detection is given, based on fuzzy comprehensive evaluation, which makes intrusion detection more effective and efficient.
出处
《计算机工程与设计》
CSCD
北大核心
2007年第15期3588-3589,3593,共3页
Computer Engineering and Design
关键词
网络安全
入侵检测系统
特征检测
模糊数学
模糊综合评判
network security
intrusion detection system
character detection
fuzzy mathematics
fuzzy comprehensive evaluation
