摘要
论文提出了一种基于云模型的入侵检测方法。该方法通过监控系统资源的使用情况(例如网络的流量、内存和CPU的使用情况),并对这些监控资源的原始数据进行处理,然后将处理后的数据输入到云决策器,云决策器根据设定的规则做出入侵决策。该方法能够检测系统级、网络级和用户级的入侵行为,模拟实验表明该方法有很强的检测能力和较好的鲁棒性。
In this paper we present a new method using cloud model.This method monitors various activities on system resource(such as flow of network,CPU and memory's using),and processes those raw data of system resource,then puts processed data to cloud decision generator which decides intrusion according to rules.This method can detect intrusion action on system level,network level and user level,simulation experiment indicates the method has very highly detec-tion ability and robust ability.
出处
《计算机工程与应用》
CSCD
北大核心
2003年第26期158-160,164,共4页
Computer Engineering and Applications
基金
国家自然科学基金(编号:69975024)资助
关键词
入侵检测
云决策器
不确定性推理
规则发生器
Intrusion Detection,Cloud Decision Generator,Uncertainty Reasoning,Rule Generator