Improved aggregation algorithm for intrusion-detection alerts

doi:10.3778/j.issn.1002-8331.2010.07.032

Computer Engineering and Applications ›› 2010, Vol. 46 ›› Issue (7): 107-109.DOI: 10.3778/j.issn.1002-8331.2010.07.032

• 网络、通信、安全 • Previous Articles Next Articles

Improved aggregation algorithm for intrusion-detection alerts

WANG Zhuo，FAN Jiu-lun，LIU Jian-hua

Department of Information and Control，Xi’an Institute of Post and Telecommunications，Xi’an 710061，China

Received:2008-09-08 Revised:2008-12-26 Online:2010-03-01 Published:2010-03-01
Contact: WANG Zhuo

入侵检测系统报警信息聚合方法的改进

王琢，范九伦，刘建华

西安邮电学院信息与控制系，西安 710061

通讯作者: 王琢

Abstract

Abstract: Considering the drawbacks existed in the algorithms based on attribute differences to aggregate intrusion detection alert，an improved algorithm is proposed.The proposed algorithm has the advantages of simplicity and intuition.Experiment results on the DARPA2000 IDS test dataset indicate that the algorithm is efficient.

Key words: intrusion detection, attribute difference, alert aggregation

摘要： 针对现有基于属性差异的入侵检测系统报警信息聚合算法存在的缺陷，提出一种改进的基于属性差异的报警信息聚合算法。该方法简单、直观。在DARPA2000测试数据集上的测试说明了算法的有效性。

关键词: 入侵检测, 属性差异, 报警聚合

CLC Number:

TP393.08

WANG Zhuo，FAN Jiu-lun，LIU Jian-hua. Improved aggregation algorithm for intrusion-detection alerts[J]. Computer Engineering and Applications, 2010, 46(7): 107-109.

王琢，范九伦，刘建华. 入侵检测系统报警信息聚合方法的改进[J]. 计算机工程与应用, 2010, 46(7): 107-109.

[1]	WANG Zhendong, ZHANG Lin, LI Dahai. Survey of Intrusion Detection Systems for Internet of Things Based on Machine Learning [J]. Computer Engineering and Applications, 2021, 57(4): 18-27.
[2]	CAO Lei, LI Zhanbin, YANG Yongsheng, ZHAO Longfei. Intrusion Detection Method Based on Two-Layer Attention Networks [J]. Computer Engineering and Applications, 2021, 57(19): 142-149.
[3]	SHEN Shaoyu, CAI Manchun, LU Tianliang, ZHAO Qi. Intrusion Detection Algorithm based on LFKPCA-DWELM [J]. Computer Engineering and Applications, 2021, 57(17): 130-137.
[4]	GONG Junhui, HU Xiaohui, DU Yongwen. Research on Selection of Optimal Defense Strategy Based on Evolutionary Game [J]. Computer Engineering and Applications, 2021, 57(13): 116-123.
[5]	LI Jiayue, ZHAO Bo, LI Xiang, LIU Hui, LIU Yifan, ZOU Jianwen. Network Traffic Anomaly Prediction Method Based on Deep Learning [J]. Computer Engineering and Applications, 2020, 56(6): 39-50.
[6]	CHEN Hong, WANG Runting, XIAO Chenglong, GUO Pengfei, HUANG Jie, CHEN Honglin. Research on Intrusion Detection Model Based on DBN-XGBDT [J]. Computer Engineering and Applications, 2020, 56(22): 83-91.
[7]	DI Chong, LI Tong. Network Unknown Attack Detection with Deep Learning [J]. Computer Engineering and Applications, 2020, 56(22): 109-116.
[8]	WANG Pan, SONG Xuehua, WANG Changda, CHEN Feng, XU Xiaqiang, CAI Guanyu. Intrusion Detection Method Based on Improved Deep Belief Network [J]. Computer Engineering and Applications, 2020, 56(20): 87-92.
[9]	CHEN Hong, ZHAO Jianzhi, XIAO Chenglong, CHEN Jianhu, XIAO Yue. Research on Improved Intrusion Detection Model of ADASYN-SDA [J]. Computer Engineering and Applications, 2020, 56(2): 97-105.
[10]	YANG Yanrong, SONG Rongjie, ZHOU Zhaoyong. Network Intrusion Detection Method Based on GAN-PSO-ELM [J]. Computer Engineering and Applications, 2020, 56(12): 66-72.
[11]	WU Depeng, LIU Yi. Intrusion Detection Model Based on Self-Organizing Map of Variable Network Structure [J]. Computer Engineering and Applications, 2020, 56(12): 81-86.
[12]	LIU Yuefeng1, WANG Cheng1, ZHANG Yabin1, YUAN Jianghao2. Multiscale Convolutional CNN Model for Network Intrusion Detection [J]. Computer Engineering and Applications, 2019, 55(3): 90-95.
[13]	JIANG Xinlan, JIA Wenbo. Machine Vision Detection Method for Foreign Object Intrusion in High-Speed Rail Contact Net [J]. Computer Engineering and Applications, 2019, 55(22): 250-257.
[14]	MA Zhanfei1, YANG Jin2, JIN Yi2, BIAN Qi3. Network Intrusion Detection Method Based on IQPSO-IDE Algorithm [J]. Computer Engineering and Applications, 2019, 55(10): 115-120.
[15]	LIU Haiyan, ZHANG Yu, BI Jianquan, XING Meng. Review of technology based on distributed and collaborative network intrusion detection [J]. Computer Engineering and Applications, 2018, 54(8): 1-6.

Improved aggregation algorithm for intrusion-detection alerts

入侵检测系统报警信息聚合方法的改进

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics