一种适应负载特征的入侵检测方法

• 计算机科学 • Previous Articles Next Articles

A Payloadadapt Intrusion Detection Method

XIAO Wei¹,², FANG Zhiyi¹, WANG Wei³, YANG Hongjun¹

1. College of Computer Science and Technology, Jilin University, Changchun 130012, China;2. Department of Basic Training of Flat Training Base, Airforce Aviation University, Changchun 130022, China;3. School of Computer Science, Northeast Normal University, Changchun 130024, China

Received:2008-01-02 Revised:1900-01-01 Online:2008-07-26 Published:2008-07-26
Contact: FANG Zhiyi

Abstract

Abstract: According to the network environment constant change and rule classification asymmetry, we developed a high efficient detection method, considering the characteristics of both rules and loads. The method could dynamically generate a rule-matching tree, which adapted the payload features. Then we implemented it over Snort. The experiment results show that using the method, we can not only solve the problem of Network Intrusion System’s high packet loss rates, but also greatly reduce the rule set of each packet or event needs detection. Thus, the detection efficiency will be improved.

Key words: intrusion detection, payload, rule, network intrusion detection system

CLC Number:

TP309

XIAO Wei,, FANG Zhiyi, WANG Wei, YANG Hongjun. A Payloadadapt Intrusion Detection Method[J].J4, 2008, 46(04): 725-728.

[1]	YANG Yong, ZHANG Lei, QU Fuheng, LIU Junjie, CHEN Qiang. THIMFUP Algorithm Based on the Most Frequent Item Extraction and Candidate Set Pruning [J]. Journal of Jilin University Science Edition, 2021, 59(3): 635-642.
[2]	WANG Tingting, WANG Hongzhi, LUI Qingxue, HU Huangshui, WANG Chuhang. Design of Fuzzy PID Controller for Brushless DC Motor Optimized by GA [J]. Journal of Jilin University Science Edition, 2020, 58(6): 1421-1428.
[3]	YANG Chenju, SUN Jun, PI Qiandong, SHAO Yubin, LONG Hua. Hierarchical Parsing Based on CRF and Multiple Rules [J]. Journal of Jilin University Science Edition, 2020, 58(6): 1452-1460.
[4]	ZHU Hongwei. Medical Image Fusion Method Based on NSST and Improved Sparse Representation [J]. Journal of Jilin University Science Edition, 2020, 58(4): 931-936.
[5]	WU Chunqiong. Characteristic Trend Reasoning Algorithm for LargeScale Data [J]. Journal of Jilin University Science Edition, 2020, 58(2): 364-370.
[6]	DUAN Yajun, YANG Youlong, BAI Xuying. Classification Algorithm of Random Missing AttributeValue Data Based on Fuzzy Rule#br# [J]. Journal of Jilin University Science Edition, 2019, 57(1): 89-96.
[7]	FENG Feng, ZHANG Longyao, ZHANG Qing. Description and Mining Method of Maximal Association RulesBased on Logical Formulas on Soft Sets [J]. Journal of Jilin University Science Edition, 2018, 56(4): 901-908.
[8]	ZHOU Shiyuan, WANG Yinglin. Semantic Search Algorithm Based onExtraction Rules and Ontology Mapping [J]. Journal of Jilin University Science Edition, 2018, 56(2): 329-334.
[9]	REN Weiwu, ZHANG Bochen, DI Xiaoqiang, LU Yinan. Density Clustering Anomaly Intrusion DetectionAlgorithm Based on ABCDBSCAN [J]. Journal of Jilin University Science Edition, 2018, 56(1): 95-100.
[10]	GUAN Biao. Multi-focus Image Fusion Method Based on Wavelet Transform [J]. Journal of Jilin University Science Edition, 2017, 55(04): 915-920.
[11]	CAI Hua, CHEN Guangqiu, LIU Guangwen, GENG Zhenye, YANG Yong. Image Fusion Method Based on BoundConstrained OptimalProjection Gradient for NMF in TINST Domain [J]. Journal of Jilin University Science Edition, 2016, 54(05): 1087-1095.
[12]	YUAN Kaiyin, FEI Lan. Detection of Network Intrusion Based on Hybrid ParticleSwarm Optimization Algorithm Selection Features [J]. Journal of Jilin University Science Edition, 2016, 54(02): 309-314.
[13]	CAO Ying, MIAO Zhigang. Improved Apriori Algorithm Based on Vector Matrix Optimization Frequent Items [J]. Journal of Jilin University Science Edition, 2016, 54(02): 349-353.
[14]	PENG Tao, DAI Yaokang, ZHU Fengtong, ZHANG Bangzuo, LIU Lu, YAN Zhao, QIAN Feng. RuleBased Method for Unsupervised PartofSpeech Tagging [J]. Journal of Jilin University Science Edition, 2015, 53(05): 956-962.
[15]	LIU Tao, LIU Richeng, LV Xianrui, JING Yu. Differential Viscosity Function of Laminar Flowof Non-Newtonian Fluid in Pipes [J]. Journal of Jilin University Science Edition, 2015, 53(03): 471-477.

A Payloadadapt Intrusion Detection Method

PDF (PC)

Like

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Metrics

Comments

Recommended 0