基于基因库的新型检测器生成方法

A New Method for Detector Generation Based on Gene Library

提出一种新的检测器生成方法。由于非我样本中存在着关于非我空间的信息,提出通过统计非我样本中各属性的分布情况来构建基因库,并应用基因库来生成检测器的方法来检测入侵。应用KDDCup1999数据集,通过实验证明该方法能够生成检测率更高的检测器集。

In order to improve the the generation and detection efficiency of detectors,a new mthod for detector generation was proposed based on gene library.There was information about non-self space in non-self samples,so used gene library which was built by counting the distribution of each of attributes in non-self samples to generate detectors,and used those detectors to detect intrusions.It is proved by experiences with KDD Cup 99 data set that this method can generate detectors more quickly and effectively,and the generated detector set is with higherpositive detection rate.