摘要
当今的网络在设计初期并没有充分考虑其安全性,因此使得网络被频频攻击成功。当网络管理人员在检测网络是否遭到黑客的攻击时,可以从网络流量的角度出发,检测网络流量是否异常。网络流量是否异常可以作为网络是否被攻击的一个依据。网络中的流量存在正常还是异常的两种状态,在参考已有的检测技术之后,使用MMTD这一算法来检测网络的流量。在文中根据流与流量的特性给出检测函数y=f(x),最后使用MMTD这一算法进行流量是否异常做出判断。利用MMTD算法来研究网络的流量尚属第一次,该算法能够使得已有流量检测算法具有一定的智能性,可以作为已有流量检测算法的补充。
In today's network in the early stages of design and not ful y consider their safety, so that the network is frequently at ack success. When the network management personnel in detecting whether the network hacker at acks, can start from the network point of view, if the network traf ic anomaly detection. If the network traf ic anomaly can be regarded as a basis for the network is at acked. Flows in the network there are two types of normal or abnormal, after detection technology reference existing, the use of the MMTD algorithm to detect network traf ic. According to the characteristics of flow and flow detection function is given, and final y the use of the MMTD algorithm is used to judge whether the abnormal flow. To study the network using MMTD algorithm flow for the first time, the algorithm can make the existing traf ic detection algorithm has certain intel igence, can be used as a supplementary flow detection algorithm.
基金
北京航空航天大学软件开发环境国家重点实验室开放基金资助项(SKLSDE-2013KF)