Network intrusion forensics is an important extension to present security infrastructure,and is becoming the focus of forensics research field.However,comparison with sophisticated multi-stage attacks and volume of se...Network intrusion forensics is an important extension to present security infrastructure,and is becoming the focus of forensics research field.However,comparison with sophisticated multi-stage attacks and volume of sensor data,current practices in network forensic analysis are to manually examine,an error prone,labor-intensive and time consuming process.To solve these problems,in this paper we propose a digital evidence fusion method for network forensics with Dempster-Shafer theory that can detect efficiently computer crime in networked environments,and fuse digital evidence from different sources such as hosts and sub-networks automatically.In the end,we evaluate the method on well-known KDD Cup1999 dataset.The results prove our method is very effective for real-time network forensics,and can provide comprehensible messages for a forensic investigators.展开更多
According to fault type diversity and fault information uncertainty problem of the hydraulic driven rocket launcher servo system(HDRLSS) , the fault diagnosis method based on the evidence theory and neural network e...According to fault type diversity and fault information uncertainty problem of the hydraulic driven rocket launcher servo system(HDRLSS) , the fault diagnosis method based on the evidence theory and neural network ensemble is proposed. In order to overcome the shortcomings of the single neural network, two improved neural network models are set up at the com-mon nodes to simplify the network structure. The initial fault diagnosis is based on the iron spectrum data and the pressure, flow and temperature(PFT) characteristic parameters as the input vectors of the two improved neural network models, and the diagnosis result is taken as the basic probability distribution of the evidence theory. Then the objectivity of assignment is real-ized. The initial diagnosis results of two improved neural networks are fused by D-S evidence theory. The experimental results show that this method can avoid the misdiagnosis of neural network recognition and improve the accuracy of the fault diagnosis of HDRLSS.展开更多
Four common oil analysis techniques, including the ferrography analysis (FA), the spectrometric oil analysis (SOA), the particle count analysis (PCA), and the oil quality testing (OQT), are used to implement t...Four common oil analysis techniques, including the ferrography analysis (FA), the spectrometric oil analysis (SOA), the particle count analysis (PCA), and the oil quality testing (OQT), are used to implement the military aeroengine wear fault diagnosis during the test drive process. To improve the precision and the reliability of the diagnosis, the aeroengine wear fault fusion diagnosis method based on the neural networks (NN) and the Dempster-Shafter (D-S) evidence theory is proposed. Firstly, according to the standard value of the wear limit, original data are pre-processed into Boolean values. Secondly, sub-NNs are established to perform the single diagnosis, and their training samples are dependent on experiences from experts. After each sub-NN is trained, diagnosis results are obtained. Thirdly, the diagnosis results of each sub-NN are considered as the basic probability allocation value to faults. The improved D-S evidence theory is applied to the fusion diagnosis, and the final fusion results are obtained. Finally, the method is verified by a diagnosis example.展开更多
基金supported by the National Natural Science Foundation of China under Grant No.60903166 the National High Technology Research and Development Program of China(863 Program) under Grants No.2012AA012506,No.2012AA012901,No.2012AA012903+9 种基金 Specialized Research Fund for the Doctoral Program of Higher Education of China under Grant No.20121103120032 the Humanity and Social Science Youth Foundation of Ministry of Education of China under Grant No.13YJCZH065 the Opening Project of Key Lab of Information Network Security of Ministry of Public Security(The Third Research Institute of Ministry of Public Security) under Grant No.C13613 the China Postdoctoral Science Foundation General Program of Science and Technology Development Project of Beijing Municipal Education Commission of China under Grant No.km201410005012 the Research on Education and Teaching of Beijing University of Technology under Grant No.ER2013C24 the Beijing Municipal Natural Science Foundation Sponsored by Hunan Postdoctoral Scientific Program Open Research Fund of Beijing Key Laboratory of Trusted Computing Funds for the Central Universities, Contract No.2012JBM030
文摘Network intrusion forensics is an important extension to present security infrastructure,and is becoming the focus of forensics research field.However,comparison with sophisticated multi-stage attacks and volume of sensor data,current practices in network forensic analysis are to manually examine,an error prone,labor-intensive and time consuming process.To solve these problems,in this paper we propose a digital evidence fusion method for network forensics with Dempster-Shafer theory that can detect efficiently computer crime in networked environments,and fuse digital evidence from different sources such as hosts and sub-networks automatically.In the end,we evaluate the method on well-known KDD Cup1999 dataset.The results prove our method is very effective for real-time network forensics,and can provide comprehensible messages for a forensic investigators.
文摘According to fault type diversity and fault information uncertainty problem of the hydraulic driven rocket launcher servo system(HDRLSS) , the fault diagnosis method based on the evidence theory and neural network ensemble is proposed. In order to overcome the shortcomings of the single neural network, two improved neural network models are set up at the com-mon nodes to simplify the network structure. The initial fault diagnosis is based on the iron spectrum data and the pressure, flow and temperature(PFT) characteristic parameters as the input vectors of the two improved neural network models, and the diagnosis result is taken as the basic probability distribution of the evidence theory. Then the objectivity of assignment is real-ized. The initial diagnosis results of two improved neural networks are fused by D-S evidence theory. The experimental results show that this method can avoid the misdiagnosis of neural network recognition and improve the accuracy of the fault diagnosis of HDRLSS.
文摘Four common oil analysis techniques, including the ferrography analysis (FA), the spectrometric oil analysis (SOA), the particle count analysis (PCA), and the oil quality testing (OQT), are used to implement the military aeroengine wear fault diagnosis during the test drive process. To improve the precision and the reliability of the diagnosis, the aeroengine wear fault fusion diagnosis method based on the neural networks (NN) and the Dempster-Shafter (D-S) evidence theory is proposed. Firstly, according to the standard value of the wear limit, original data are pre-processed into Boolean values. Secondly, sub-NNs are established to perform the single diagnosis, and their training samples are dependent on experiences from experts. After each sub-NN is trained, diagnosis results are obtained. Thirdly, the diagnosis results of each sub-NN are considered as the basic probability allocation value to faults. The improved D-S evidence theory is applied to the fusion diagnosis, and the final fusion results are obtained. Finally, the method is verified by a diagnosis example.
