Computer Engineering and Applications ›› 2010, Vol. 46 ›› Issue (33): 91-93.DOI: 10.3778/j.issn.1002-8331.2010.33.025

• 网络、通信、安全 • Previous Articles     Next Articles

Intrusion detection method based on crowding genetic algorithm

LIU Wen-tao1,HU Jia-bao2   

  1. 1.Department of Computer and Information Engineering,Wuhan Polytechnic University,Wuhan 430023,China
    2.College of Computer Science & Technology,Wuhan University of Technology,Wuhan 430063,China
  • Received:2010-05-12 Revised:2010-08-09 Online:2010-11-21 Published:2010-11-21
  • Contact: LIU Wen-tao

基于排挤遗传算法的入侵检测方法

刘文涛1,胡家宝2   

  1. 1.武汉工业学院 计算机与信息工程系,武汉 430023
    2.武汉理工大学 计算机学院,武汉 430063
  • 通讯作者: 刘文涛

Abstract: The rules produced by the traditional genetic algorithm for intrusion detection system are too single and lead to the low detection rate.In order to get precise and complete intrusion detection rules,this paper puts forward a method based on deterministic crowding genetic algorithm.It can get the whole global optimal solutions and keep the diversity of the population.The basic steps and case simulation of this algorithm are presented.The concrete method of creating the intrusion detection rules using this algorithm is analyzed in detail using the KDDCup99 as the testing data set.The chromosome code and fitness function are proposed.The experiments show that the algorithm is efficient and can get better intrusion detection rules.

摘要: 传统遗传算法在入侵检测系统中构造的规则单一,导致检测率低,为了构造更加精确和完备的入侵规则,提出了一种基于确定性排挤遗传的规则构造算法,该算法使用确定性排挤来产生下一代种群,能够有效保持种群多样性,获得全部最优解。给出了算法的步骤和仿真,以网络数据集KDDCup99为对象,详细分析了利用该算法来生成入侵规则的具体实现过程,对染色体编码和适应度函数进行了设计和实现。最后通过实验证明了此算法的有效性,可以较好地获得入侵检测规则。

CLC Number: