摘要
从入侵检测的角度来看,"分析"是指对用户和系统活动数据进行有效的组织、整理及特征提取,以鉴别出我们感兴趣的行为。这种行为的鉴别可以实时进行,也可以事后分析。在很多情况下,事后的进一步分析通常是为了搜寻行为的责任人。
From the perspective of intrusion detection, " analysis" refers to the user and system activity data on the effective organization, organize, and feature extraction, in order to identify the behavior we are interested. This behavior can identify in real time, it can be later analyzed. In many cases, after further analysis of search behavior is usually responsible for.
出处
《大庆师范学院学报》
2011年第6期18-21,共4页
Journal of Daqing Normal University
关键词
入侵检测
防火墙
神经网络
intrusion detection
fire wall
neural network