期刊文献+
任意字段
题名或关键词
题名
关键词
文摘
作者
第一作者
机构
刊名
分类号
参考文献
作者简介
基金资助
栏目信息

基于网络流量预测模型的CFAR入侵检测方法研究 被引量:2

CFAR Intrusion Detection Method Based on Network Flow Prediction Model
原文传递
导出
摘要 论文提出了一种基于网络流量预测模型的CFAR入侵检测系统。采用AR模型对网络流量进行预测,并运用雷达信号处理中的恒误警CFAR技术,选取检测阀值以判定是否存在入侵信号。利用林肯实验室DARPA数据对系统进行试验,通过对不同的CFAR检测进行比较分析,最后提出三种CFAR联合检测,使得系统具有更高的检测率和更低的误警率。 Constant false alarm rate(CFAR) intrusion detection method based on network flow prediction is proposed in this paper. The network flow can be predicted by using the AR model, and an appropriate detection threshold is chosen through the CFAR in radar signal processing, which can decide whether an intrusion signal exists or not. According to the simulations based on the DARPA datasets of Lincoln Lab, different CFAR detections are compared and analyzed. Finally, the united CFAR detection is proposed, which shows that the detective probability is actively high while the false alarm rate fairly low.
作者 胡碧峰 韦红军
机构地区 中国人民解放军
出处 《信息安全与通信保密》 2008年第8期112-115,共4页 Information Security and Communications Privacy
关键词 入侵检测 AR模型 恒误警率 intrusion detection AR model CFAR
分类号 TP393.08 [自动化与计算机技术—计算机应用技术]
  • 相关文献

参考文献5

  • 1[1]Herringshaw C.Detecting attacks on network[J].Computer,1997,30:16-17.
  • 2[2]Lin Jia-Ling,Wang X S,Jajodia S.Abstraction-based misuse detection:high-level specifications and adaptable strategies[J].Computer Security Foundations Workshop.Proceedings.1998.11th IEEE,1998.6:190-201.
  • 3[3]JawL C,Wu N.Anomaly detection and reasoning with embedded physical model.Aerospace Conference Proceedings[J].2002.IEEE,vol.6:3073-3081.
  • 4[5]Di He,Herry Leung.A Novel CFAR Intrusion Detection Method Using Chaotic Stochastic Resonance Circuits and Systems[C].2004.ISCAS'04.Proceedings of the 2004 International Symposium on,2004.5,vol.4:23-26.
  • 5邹柏贤,姚志强.一种网络流量平稳化方法[J].通信学报,2004,25(8):14-23. 被引量:18

二级参考文献12

  • 1ADAS A. Traffic models in broadband networks[J]. IEEE Communications Magazine, 1997, 35(7): 82-89.
  • 2MAGLARIS B, et al. Performance models of statistical multiplexing in packet video communications[J]. IEEE Trans Commun,1998,36(7): 834-844.
  • 3GRUNENFELDER R, et al. Characterization of video codecs as autoregressive moving average processes and ralated queuing system performance[J]. IEEE JSAC, 1991,9(4): 283-293.
  • 4FROST V, MEL AMED B. Traffic modeling for telecommunications networks[J]. IEEE Communication Magazine, 1994, 32(3):70-81.
  • 5BASU S, MUKHERJEE A, KLIVANSKY S. Time series models for Internet traffic[A]. Proceedings of INFORCOM[C].1996.611-620.
  • 6SANG A, LIS. A predictability analysis of network traffic[A]. Proceedings of IEEEINFOCOM 2000[C]. 2000. 342-351.
  • 7NORROS I. On the use of fractional brownian motion in the theory of connectionless traffic[J]. IEEE Journal of Selected Areas in Communications, 1995, 13(6): 953-962.
  • 8WILFRID J, FRANK J. Introduction to statistical analysis, third edition[M]. New York: McGraw-Hill Book Company, 1983.
  • 9GEORGEE GWILYMM GREGORYC 顾岚 范金诚译.时间序列分析--预测与控制[M].北京:中国统计出版社,1997..
  • 10SHIM C, RYOO I, LEE J, et al. Modeling and call admission control algorithm of variable bit rate video in ATM networks[J]. IEEE Journal on Selected Areas in Communications, 1994, 12(2): 332-344.

共引文献17

同被引文献10

引证文献2

二级引证文献4

信息安全与通信保密
2008年 第8期

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部