摘要
For Intrusion Detection System, it is very important that system has enough and valid detection knowledgeset. This heavily depends on experience of an individual administrator. If we could have the experience of individualshared by different systems, the collaborative systems will exchange the new detection knowledge automatically. Itwill dramatically improve the performance of systems as a whole. This paper presents a novel idea: Intrusion Detec-tion Knowledge Self-Optimization, gives and implements a Common Intrusion Detection Knowledge Self-optimizationFrame. The frame could manage different subsystems, The same type of subsystems could share and optimize detectionknowledge automatically.
For Intrusion Detection System, it is very important that system has enough and valid detection knowledge set. This heavily depends on experience of an individual administrator. If we could have the experience of individual shared by different systems, the collaborative systems will exchange the new detection knowledge automatically. It will dramatically improve the performance of systems as a whole. This paper presents a novel idea: Intrusion Detection Knowledge Self-Optimization, gives and implements a Common Intrusion Detection Knowledge Self-optimization Frame. The frame could manage different subsystems. The same type of subsystems could share and optimize detection knowledge automatically.
出处
《计算机科学》
CSCD
北大核心
2003年第3期50-53,共4页
Computer Science
关键词
入侵检测
知识自优化框架
计算机安全
知识管理
分布式计算
Distributed, Intrusion detection, Common intrusion detection knowledge self-optimization frame, Knowledge management