期刊文献+
任意字段
题名或关键词
题名
关键词
文摘
作者
第一作者
机构
刊名
分类号
参考文献
作者简介
基金资助
栏目信息

入侵防御系统管理和配置的检查博弈分析 被引量:5

Inspection game analysis of intrusion prevention system management and configuration
下载PDF
导出
摘要 入侵防御系统(IPS)是当前信息安全领域的一种新的技术手段,其配置和管理是目前急需解决的问题.应用检查博弈对入侵防御系统进行分析,得出如下结论:当误报率和正确报警概率的和大于1时,IPS 应设置成主动防御模式,也就是不进行人工调查,由 IPS 自动阻断攻击;反之,IPS 应设置成经人工调查后,由 IPS 阻断攻击的模式.IPS 正确报警的概率也不是越高越好,应该设置在临界值和1之间. At the present time, intrusion prevention system (IPS) is a new kind of information security technology measure, whose management and configuration have become an urgency problem recently. In this paper, through the analysis of inspection game some interesting conclusions are obtained. When the sum of accurate alarm rate and false alarm rate is more than 1, IPS should be set as the mode of initiative prevention, which means that IPS can block attacks automatically without investigation. Contrarily, the prevention of IPS needs investigation. During the configuration of IPS, the accurate alarm rate of IPS should be located between the critical value and 1.
作者 李天目 仲伟俊 梅姝娥
机构地区 东南大学经济管理学院
出处 《系统工程学报》 CSCD 北大核心 2008年第5期589-595,共7页 Journal of Systems Engineering
基金 国家自然科学基金资助项目(70671024)
关键词 入侵防御系统 主动防御 检查博弈 intrusion prevention system (IPS) initiative prevention inspection game
分类号 N94 [自然科学总论—系统科学] TP309 [自动化与计算机技术—计算机系统结构]
  • 相关文献

参考文献13

  • 1Bace R, Mell P. Special Publication on Intrusion Detection System [ R]. Washington D. C. : National Institute of Standards and Technology, NIST SP-800-31, 2001.
  • 2Eugene S. Intrusion prevention [J]. Computers & Security, 2004, 23(4) : 265-266.
  • 3Kim S, Lee J. A system architecture for high-speed deep packet inspection in signature-based network intrusion prevention [J].Journal of Systems Architecture, 2007, 56(5): 1383-7621.
  • 4Morton S. Using the danger model of immune systems for distributed defense in modern data networks [ J ]. Computer Networks, 2007, 51(5): 1315-1333.
  • 5郭渊博,马建峰.基于博弈论框架的自适应网络入侵检测与响应[J].系统工程与电子技术,2005,27(5):914-917. 被引量:9
  • 6王卫平,朱卫未.基于不完全信息动态博弈的入侵检测模型[J].小型微型计算机系统,2006,27(2):253-256. 被引量:4
  • 7Lye K, Jeannette M W. Game strategies in network security [ J ]. International Journal of Information Security, 2005,4 (2) : 71 -86.
  • 8Tansu A, Tamer B. A game theoretic analysis of intrusion detection in access control system[ A ]. In: Proceedings of 43rd IEEE Conference on Decision and Control [ C ]. Atlantis, Paradise Island: IEEE Control Systems Society, 2004. 1568-1573.
  • 9Huseyin C, Srinivasan R. Configuration of detection software : A comparison of decision and game theory approaches [ J ]. Decision Analysis, 2004, 1 (3) : 131-148.
  • 10Huseyin C, Birendra M, Srinivasan R. The value of intrusion detection systems in information technology security architecture[J]. Information System Research, 2005, 16(1) : 28-46.

二级参考文献13

  • 1Denning D.An intrusion-detection model[J].IEEE Trans on Software Engineering.1987,13(2):222-232.
  • 2Guillermo Owen;Game Theory[M].Academic Press,New York.1.2,p1
  • 3Battigalli,Pierpaolo;Rationalizability in infinite,dynamic games with incomplete information[J].Research in Economics,March,2003,57(1):1-38.
  • 4Drew Fudenberg,Jean Tirole.Game theory[M].Beijing,China Renmin University Press,288-293.
  • 5Animesh Patcha,Jung-Min Park.A game theoretic approach to modeling intrusion detection in mobile ad hoc networks[D].United States Military Academy,West Point,NY,June 2004,10-11.
  • 6Huadong Wu,Siegel M.Ablay S.Sensor fusion using dempster-shafer theory II:static weighting and Kalman filter-like dynamic weighting[A].Instrumentation and Measurement Technology Conference[C].2003.IMTC'03.Proceedings of the 20th IEEE,20-22 May 2003,2:907-912.
  • 7Kari Sentz,Scott Ferson.Combination of evidence in dempster-shafer theory[Z].SAND 2002-0835 Unlimited Release Printed April 2002.
  • 8Le Hegarat-Mascle,Richard S,Ottle D C.Multi-scale data fusion using dempster-shafer evidence theory;geoscience and remote sensing symposium[C].2002.IGARSS'02.2002 IEEE International,June 2002,2:24-28,911-913.
  • 9Current state of the Art: Multidisciplinary Design Optimization [R].AIAA White Paper, Washington : AIAA Technical Committee for MDO, 1991.
  • 10Alvarez L F. Design optimization based on genetic programming: approximation model building for design optimization using the response surface methodology and genetic programming[D]. University of Bradford ,UK, 2000.

共引文献10

同被引文献56

引证文献5

二级引证文献28

系统工程学报
2008年 第5期

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部