计算机工程与应用 ›› 2008, Vol. 44 ›› Issue (11): 136-138.

• 网络、通信、安全 • 上一篇    下一篇

基于危险理论与数理统计的入侵检测模型

王春枝,金伟健   

  1. 湖北工业大学 计算机学院,武汉 430068
  • 收稿日期:2007-08-24 修回日期:2007-10-22 出版日期:2008-04-11 发布日期:2008-04-11
  • 通讯作者: 王春枝

Intrusion detection model based on danger theory and mathematical statistics

ANG Chun-zhi,JIN Wei-jian   

  1. School of Computer Science,Hubei University of Technology,Wuhan 430068,China
  • Received:2007-08-24 Revised:2007-10-22 Online:2008-04-11 Published:2008-04-11
  • Contact: WANG Chun-zhi

摘要: 分析了危险理论的基本机制,针对处理危险信号的特点,提出了基于特征串HAMMING 距离的数理统计匹配算法,并以该算法来优化协同信号的产生,以及操作抗原与抗体的匹配,最后给出了基于该算法的入侵检测模型。

关键词: 计算机免疫, 危险理论, 入侵检测, 危险信号, 数理统计

Abstract: The paper analyzes the primitive mechanism of the danger theory,according to the features of processing danger signal,an intrusion detection model is presented based on the mathematical statistics matching algorithm which is originated from the HAMMING distance of character string,in order to optimize the method of generating coordinate signal and to operate the matching of antigen and antibody.

Key words: computer immune, danger theory, intrusion detection, danger signal, mathematical statistics