计算机工程与应用 ›› 2013, Vol. 49 ›› Issue (14): 101-104.

• 网络、通信、安全 • 上一篇    下一篇

融合自控粒子群和免疫进化的入侵数据分类

刘教民1,2,李勇征1,王  雷3,王震洲2   

  1. 1.燕山大学 信息科学与工程学院,河北 秦皇岛 066004
    2.河北科技大学 信息学院,石家庄 050018
    3.石家庄理工职业学院 计算机系,石家庄 050228
  • 出版日期:2013-07-15 发布日期:2013-07-31

Intrusion data classification combining self-control particle swarm and immune evolutionary

LIU Jiaomin1,2, LI Yongzheng1, WANG Lei3, WANG Zhenzhou2   

  1. 1.College of Information Science and Engineering, University of Yanshan, Qinhuangdao, Hebei 066004, China
    2.College of Information, Hebei University of Science and Technology, Shijiazhuang 050018, China
    3.Department of Computer, Shijiazhuang Institute of Technology, Shijiazhuang 050228, China
  • Online:2013-07-15 Published:2013-07-31

摘要: 在对基于异常的入侵检测进行训练时,缺少一个实时有效的训练集,提出了一种融合自控粒子群和免疫进化的入侵数据分类方法,对网络数据进行聚类分析,生成可靠的训练数据。粒子群模糊C均值聚类算法需要提前确定聚类数目,这在网络数据分析处理中是很难把握的,引入自控粒子群的方法根据迭代演算情况自动调节不同聚类数目的粒子群规模,使数据最后聚合在一个数目最优的聚类集中,同时为了克服陷入局部最优的问题,引入免疫进化机制,使部分粒子在当前最优指导下进行合理变异和替换,跳出局部最优解。

关键词: 粒子群优化, 模糊聚类, 入侵检测, 免疫

Abstract: The intrusion detection based on abnormity needs real-time and effective sets, a kind of intrusion data classification algorithm combining self-control particle swarm and immune evolutionary is proposed to cluster the network data and get the reliable training sets. The number of clustering needs to be confirmed before the Particle Swarm Optimization(PSO) and Fuzzy C-Means clustering(FCM) algorithm and this is difficult for the network data. The proportion of the particle swarm with different number of clustering is adjusted according to the information from the working and it can make the sets to an optimization clustering. The immune evolutionary is imposed to solve the problem that the PSO-FCM is easier to fall into local optimization and this can make the particle to mutate and displace under surveillance.

Key words: particle swarm optimization, fuzzy clustering, intrusion detection, immune