摘要
基于模型推理的入侵检测法方法,需要在庞大的审计记录空间中搜索巨量的攻击脚本子集中的最优值,对于这-NP类完全问题,应用遗传算法较好地解决了其搜索的效率问题。
It is needed to search among all the Possible attack subsets and to match the events recorded in the audit trail.To make a decision about the realism of the hypothesis corresponding to a particular subset is difficult using model-based reasoning IDS.This NP-complete problem can be solved efficiently by using genetic algorithm,which provides a powerful heuristic method.
出处
《计算机工程与应用》
CSCD
北大核心
2001年第13期60-61,67,共3页
Computer Engineering and Applications
基金
国家863应急项目基金"信息安全系统工程方法研究"(编号:301-7-8)资助
江苏省教委科研基金(编号:00KJB11000
