摘要
针对目前网络攻击越来越频繁,现有的IDS系统检测分析不够精准,IDS系统数据库的防御已经无法满足入侵防御需求的现状。采用数据挖掘技术中的C4.5算法和序列模式挖掘算法,对系统的获取的数据包进行数据挖掘,其中C4.5算法针对的是描述系统缺陷和已知攻击方法的数据,而序列模式挖掘算法针对的是系统调用序列数据,提高数据分析的准确性。实验表明,本文对IDS系统数据规则库的改进,大大提高了系统对入侵数据分析的准确性。
Network attacks is becoming more and more frequent,the existing IDS systems detect is lack of precision,and the defense of the IDS system database has been unable to meet the needs of intrusion prevention,according to these situations. Using C4.5 algorithm of data mining techniques and sequence pattern mining algorithms to data mining of data packets obtained by system,of which the C4.5 algorithm is running for the data characterized by the description of the data system defects and known attack methods,and sequence pattern mining algorithms is running for the system call sequence data, whose goal is to improve the accuracy of the data analysis.The experiments show that these improvements of the IDS system data rules base have greatly improved the accuracy of the intrusion data analysis of system.
出处
《科技通报》
北大核心
2013年第1期124-127,共4页
Bulletin of Science and Technology
