摘要
异常检测由于自身的原因很难在商业入侵检测系统中得到应用。文中构造了入侵检测系统模型,并且给出了产生人工异常的算法,结果表明模型经过人工异常训练后,能够检测绝大多数系统未知的入侵类型。在检测已知入侵方面,模型也有不俗表现。
Anomaly detection techniques are seldom employed in the leading commercial intrusion detection systems for its own fake. This paper constructs the IDS model and proposes an algorithm to generate artificial anomalies. Empirical studies show that the model trained by artificial anomalies can detect most unknown intrusions. The model can also do well in detecting known intrusions.
出处
《计算机应用》
CSCD
北大核心
2004年第2期18-20,共3页
journal of Computer Applications
关键词
人工异常
异常检测
误用检测
簇
入侵
artificial anomalies
anomaly detection
misuse detection
cluster
intrusion