摘要
介绍了入侵检测系统中所采用的异常检测技术及其优缺点,同时介绍了克服此缺点的一些模型,在分析此类模型的基础上,提出了一种新的思想:建立一个检测系统的通信标准,从而使不同的系统能够互相通信,并形成一个检测系统的网络,以强化防范措施。
In this paper the anomaly detection technology was described. The merits and demerits of these models were also discussed. To solve deficiencies of these models, some new models were brought forward and analyzed. Based on our novel idea, if a communication standard between detection systems is established, these systems can communicate each other and constitute a network of detection system. Therefore, the system are strengthened to prevent from intrusion.
出处
《江南大学学报(自然科学版)》
CAS
2003年第3期265-267,共3页
Joural of Jiangnan University (Natural Science Edition)