一种改进的否定选择算法在入侵检测中的应用

ApplicationI on of an Improved Negative Selection Algorithm in Trusion Detection

导出

摘要有效的检测器生成算法是入侵检测的核心问题。针对现有算法存在检测率低、匹配阈值固定、检测器集合庞大等问题,通过对人工免疫系统中否定选择算法原理的分析,提出一种生成最有效检测器集的变阚值模糊匹配否定选择免疫算法,并将该算法应用到入侵检测系统中。算法采用随机生成和基因库相结合的候选检测器生成机制,在保证检测器多样性的同时,提高了候选检测器成为成熟检测器的比率。为了消除冗余检测器的产生,提高检测器集的检测效率,算法在模糊匹配的基础上生成有效检测器集。同时,匹配阈值可变,可大幅降低黑洞数量。实验结果表明,该算法提高了入侵检测率,降低了虚警率,整体检测性能较好。 Efficient detector generation algorithm is the core of intrusion detection.Aiming at the problems of existing algorithms such as low detection rate,unhandy matching threshold value and large detector set size,in this paper we analyse the negative selection algorithm principle in artificial immune system,put forward an adjustable threshold and fuzzy matching negative selection immune algorithm for generaring the most effective detector set.and apply the algorithm to intrusion detection system.The algorithm adopts the candidate detector generation mechanism which combines random generation with gene library,it ensures the diversity of detector while increasing the proportion of making candidate detectors to mature ones.In order to eliminate the occurrence of redundant detectors and increase the detecting efficiency of detector sets,in the algorithm an effective detector set is created on the basis of fuzzy matching.At the same time,the number of black hdes can be reduced sharply through adjusting the matching threshold.Experimental results show that the algorithm improves the detection rate and reduces the false alarnl rate.SO it has a better overall detection performance.

作者伍海波

机构地区长沙医学院计算机系

出处《长沙医学院学报》 2014年第4期56-59,共4页 Journal of Changsha Medical University

基金湖南教育厅科研基金项目(11C0140)

关键词人工免疫系统否定选择算法入侵检测检测器 Artificial immune systems Negative selection algorithm Intrusion detection Detector

分类号 TP393.08 [自动化与计算机技术—计算机应用技术]

引文网络
相关文献

参考文献7

1柴争义,王献荣,王亮.用于异常检测的实值否定选择算法[J].吉林大学学报（工学版）,2012,42(1):176-181. 被引量：12
2胡博,胡敏,李渊珊.否定选择算法中一种改进的检测器集生成机制[J].计算机应用研究,2011,28(1):137-138. 被引量：3
3Ilhan Aydin,Mehmet Karakose,Erhan Akin.Chaotic-based hybrid negative selection algorithm and its applications in fault and anomaly detection[J]. Expert Systems With Applications . 2010 (7)
4Zhou Ji,Dipankar Dasgupta.V-detector : An efficient negative selection algorithm with “probably adequate” detector coverage[J]. Information Sciences . 2008 (10)
5GONZALEZ F,,DASGUPTA D,KOZEMA D.Combining Negative and Classification Techniques for Anomaly Detection. Proceedings of the 2002 Congress on Evolutionary Computation CEC2002 . 2002
6Forrest S,Perelson AS,Allen L,et al.Self-Nonself Discrimination in a Computer. Proceedings of the 1994 IEEE Symposium on Research in Security and Privacy . 1994
7Gonzalez F,Dasgupt4 D,Nino L F.A Randomized Real-valued Negative Selection Algorithm. Prec.ofGECCO’’05 . 2005

二级参考文献23

1BERETA M,BURCZYNSKI T.Comparing binary and real-valued co-ding in hybrid immune algorithm for feature selection and classification of ECG signals[J].Engineering Applications Artificial Intelligence,2007,20(5):571-585.
2GONZALEZ F,DASGUPTA D,NINO L F.A randomized rea-valued negative selection algorithm,ICARIS-03[R].2005.
3ZHOU Ji,DASGUPTA D.Real-valued negative selection algorithm with variable-sized detectors[C]//Proc of Genetic and Evolutionary Computation.Berlin:Springer,2007:287-298.
4ZHOU Ji,DASGUPTA D.Applicability issues of the real-valued negative selection algorithms[C]//Proc of Genetic and Evolutionary Computation Conference.2007:111-118.
5STIBOR T,TIMMIS J,ECKERT C.A comparative study of real-valued negative selection to statistical anomaly detection techniques[C]//Proc of the 4th International Conference on Artificial Immune Systems.2005:262-275.
6Columbia University.2DSyntheticData [EB/OL].[2010-03-12].http:∥www.zhouji.net/prof/2DSyntheticData.zip.
7StatLib datasets archive [ EB/OL]. http://lib. stat. cmu. edu//dataset/.
8Bereta M,Burczy'nski T. Comparing binary and re- al-valued coding in hybrid immune algorithm for fea- ture selection and classification of ecg signals[J]. Eng Appl Artif Intell, 2007,20(5):571-585.
9Gonzdlez F, Dasgupta D, Kozma R. Combining negative selection and classification techniques for a- nomaly detection[C]//Proceedings of the 2002 Con- gress on Evolutionary Computation CEC2002. USA:IEEE Press,2002:705-710.
10Gonzdlez F A,Dasgupta D. Anomaly detection using real-valued negative selection[J]. Journal of Genetic Programming and Evolvable Machines, 2003,4 (4) : 383-403.

共引文献13

1柴争义,吴慧欣,吴勇.用于异常检测的免疫实值检测器优化生成算法[J].吉林大学学报（工学版）,2012,42(5):1251-1256. 被引量：3
2伍海波.一种改进的否定选择算法在入侵检测中的应用[J].计算机应用与软件,2013,30(2):174-176. 被引量：4
3曹羲,王亮,王清河.一种用于无线局域网用户接入的双层认证方法[J].内蒙古师范大学学报（自然科学汉文版）,2014,43(4):490-493.
4金静,韩虎,崔永君.改进的否定选择算法在入侵检测系统中的应用[J].电子设计工程,2015,23(1):7-9. 被引量：7
5张安玲,邓启森.一种混合人工免疫算法的研究[J].中北大学学报（自然科学版）,2015,36(1):56-60. 被引量：3
6高炜,曹锐.一种基于集群概率的网络入侵检测算法[J].电子技术与软件工程,2015(8):231-233. 被引量：1
7秦川.基于扩展K均值算法的入侵检测模型[J].电脑知识与技术（过刊）,2013,19(5X):3267-3269.
8张军,刘文杰.一种新的基于邻居样本分布特征的异常值检测算法研究[J].科技通报,2017,33(1):86-88. 被引量：4
9胡博.面向异常检测的双重否定黑洞覆盖算法[J].南京理工大学学报,2018,42(5):604-608. 被引量：1
10李亚伦,柴争义,陈国强.一种用于异常检测的实值否定选择算法[J].南京理工大学学报,2019,43(5):586-591. 被引量：1

1伍海波.一种改进的否定选择算法在入侵检测中的应用[J].计算机应用与软件,2013,30(2):174-176. 被引量：4
2伍海波,高劲松,唐启涛,张燕.基于生物免疫原理的网络入侵检测研究[J].长沙医学院学报,2014(2):27-31.
3马海峰,孙名松.基于多层前向神经网络入侵检测系统的研究[J].哈尔滨理工大学学报,2004,9(2):52-55. 被引量：6
4伍海波,高劲松,唐启涛,张燕.基于生物免疫原理的网络入侵检测研究[J].计算机技术与发展,2013,23(7):167-170. 被引量：6
5李建国.优化的聚类算法在异常检测中的应用[J].淮北师范大学学报（自然科学版）,2013,34(4):52-55.
6何伟山,秦亮曦.一种改进QPSO优化BP网络的入侵检测算法[J].计算机技术与发展,2013,23(12):147-150. 被引量：1
7郭红艳,谷保平.基于原子分类关联规则的网络入侵检测研究[J].河南广播电视大学学报,2014,27(2):106-109. 被引量：1
8张瑞霞,王勇.融合PCA和LDA的入侵检测算法[J].计算机技术与发展,2009,19(11):132-134. 被引量：3
9赵建华,李伟华.有监督SOM神经网络在入侵检测中的应用[J].计算机工程,2012,38(12):110-111. 被引量：15
10袁开银,费岚.混合粒子群优化算法选择特征的网络入侵检测[J].吉林大学学报（理学版）,2016,54(2):309-314. 被引量：10

长沙医学院学报

2014年第4期

浏览历史

内容加载中请稍等...

一种改进的否定选择算法在入侵检测中的应用

参考文献7

二级参考文献23

共引文献13

相关作者

相关机构

相关主题

浏览历史