摘要
任何一种检测方法都不能检测出所有入侵行为,一个完善的入侵检测系统应该是多种检测手段的综合运用。本论文的研究目标是借用数据挖掘技术探寻一种检测方法,使之有效识别已知入侵,并具备对未知类型数据的检测能力。实验证明,该方法对扫描与拒绝服务两种攻击类型具有理想的检测效果。
No a detection method can detect all of intrusion behaviors,a perfect IDS should be a unity of multiple detection means.This paper s object is to develop a detection approach based on data mining technology,which can detect known intrusion effectively and has a good capacity to recognize unknown data schema which can t be detected effectively in traditional IDS.The experiments proved that the method is effective to detect intrusion such as scanning and DoS.
出处
《潍坊学院学报》
2008年第2期19-22,共4页
Journal of Weifang University
关键词
入侵检测系统
数据挖掘
网络安全
intrusion detection system
data mining
network security
