Research on intrusion detection based on LZW algorithm and Bayesian MARS

Computer Engineering and Applications ›› 2012, Vol. 48 ›› Issue (6): 86-89.

• 网络、通信、安全 • Previous Articles Next Articles

Research on intrusion detection based on LZW algorithm and Bayesian MARS

LI Zhihui, WANG Qing, SHAO Chunyan, ZHANG Shu

Computer Science and Technology College, Harbin Engineering University, Harbin 150001, China

Received:1900-01-01 Revised:1900-01-01 Online:2012-02-21 Published:2012-02-21

基于LZW算法和贝叶斯MARS的入侵检测研究

李智慧，王晴，邵春艳，张束

哈尔滨工程大学计算机科学与技术学院，哈尔滨 150001

Abstract

Abstract: An approach of intrusion detection based on LZW algorithm is proposed. System call sequences are used as feature data. And the system call sequences are divided in the way of variable length and compressed by LZW algorithm before detecting. In application of LZW algorithm, it is adjusted to be adapted to division of variable length sequences. Bayesian Multivariate Adaptive Regression Spline（MARS） is used as classifier to identify the intrusion data. The experimental results show that LZW algorithm conforms to the inherent law of system call sequence. A good performance is achieved with a high compression ratio. The intrusion detection algorithm combining with LZW and Bayesian MARS algorithm performs steadily with various data, which is practicable and feasible.

Key words: intrusion detection, system call, LZW algorithm, variable-length sequence division, Bayesian Multivariate Adaptive Regression Spline（Bayesian MARS）

摘要： 提出了一种基于LZW算法的入侵检测算法。使用系统调用序列作为特征数据，采用LZW算法对系统调用序列数据进行变长短序列划分，同时对短序列进行压缩，并在应用的过程中对LZW算法进行适当调整以适应序列的划分。通过贝叶斯多元自适应回归样条（贝叶斯MARS）模型，对正常和异常序列进行分类并标识入侵。实验结果表明，基于LZW变长序列划分方法符合系统调用序列的内在规律，在较高压缩比的情况下，获得了很好的检测性能。LZW算法与贝叶斯MARS相结合的入侵检测算法，对各种数据表现稳定，具有一定可行性和实用性。

关键词: 入侵检测, 系统调用, LZW算法, 变长序列划分, 贝叶斯多元自适应回归样条（贝叶斯MARS）

LI Zhihui, WANG Qing, SHAO Chunyan, ZHANG Shu. Research on intrusion detection based on LZW algorithm and Bayesian MARS[J]. Computer Engineering and Applications, 2012, 48(6): 86-89.

李智慧，王晴，邵春艳，张束. 基于LZW算法和贝叶斯MARS的入侵检测研究[J]. 计算机工程与应用, 2012, 48(6): 86-89.

[1]	WANG Zhendong, ZHANG Lin, LI Dahai. Survey of Intrusion Detection Systems for Internet of Things Based on Machine Learning [J]. Computer Engineering and Applications, 2021, 57(4): 18-27.
[2]	CAO Lei, LI Zhanbin, YANG Yongsheng, ZHAO Longfei. Intrusion Detection Method Based on Two-Layer Attention Networks [J]. Computer Engineering and Applications, 2021, 57(19): 142-149.
[3]	SHEN Shaoyu, CAI Manchun, LU Tianliang, ZHAO Qi. Intrusion Detection Algorithm based on LFKPCA-DWELM [J]. Computer Engineering and Applications, 2021, 57(17): 130-137.
[4]	GONG Junhui, HU Xiaohui, DU Yongwen. Research on Selection of Optimal Defense Strategy Based on Evolutionary Game [J]. Computer Engineering and Applications, 2021, 57(13): 116-123.
[5]	LI Jiayue, ZHAO Bo, LI Xiang, LIU Hui, LIU Yifan, ZOU Jianwen. Network Traffic Anomaly Prediction Method Based on Deep Learning [J]. Computer Engineering and Applications, 2020, 56(6): 39-50.
[6]	CHEN Hong, WANG Runting, XIAO Chenglong, GUO Pengfei, HUANG Jie, CHEN Honglin. Research on Intrusion Detection Model Based on DBN-XGBDT [J]. Computer Engineering and Applications, 2020, 56(22): 83-91.
[7]	DI Chong, LI Tong. Network Unknown Attack Detection with Deep Learning [J]. Computer Engineering and Applications, 2020, 56(22): 109-116.
[8]	WANG Pan, SONG Xuehua, WANG Changda, CHEN Feng, XU Xiaqiang, CAI Guanyu. Intrusion Detection Method Based on Improved Deep Belief Network [J]. Computer Engineering and Applications, 2020, 56(20): 87-92.
[9]	CHEN Hong, ZHAO Jianzhi, XIAO Chenglong, CHEN Jianhu, XIAO Yue. Research on Improved Intrusion Detection Model of ADASYN-SDA [J]. Computer Engineering and Applications, 2020, 56(2): 97-105.
[10]	YANG Yanrong, SONG Rongjie, ZHOU Zhaoyong. Network Intrusion Detection Method Based on GAN-PSO-ELM [J]. Computer Engineering and Applications, 2020, 56(12): 66-72.
[11]	WU Depeng, LIU Yi. Intrusion Detection Model Based on Self-Organizing Map of Variable Network Structure [J]. Computer Engineering and Applications, 2020, 56(12): 81-86.
[12]	LIU Yuefeng1, WANG Cheng1, ZHANG Yabin1, YUAN Jianghao2. Multiscale Convolutional CNN Model for Network Intrusion Detection [J]. Computer Engineering and Applications, 2019, 55(3): 90-95.
[13]	JIANG Xinlan, JIA Wenbo. Machine Vision Detection Method for Foreign Object Intrusion in High-Speed Rail Contact Net [J]. Computer Engineering and Applications, 2019, 55(22): 250-257.
[14]	MA Zhanfei1, YANG Jin2, JIN Yi2, BIAN Qi3. Network Intrusion Detection Method Based on IQPSO-IDE Algorithm [J]. Computer Engineering and Applications, 2019, 55(10): 115-120.
[15]	LIU Haiyan, ZHANG Yu, BI Jianquan, XING Meng. Review of technology based on distributed and collaborative network intrusion detection [J]. Computer Engineering and Applications, 2018, 54(8): 1-6.

Research on intrusion detection based on LZW algorithm and Bayesian MARS

基于LZW算法和贝叶斯MARS的入侵检测研究

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics