摘要
针对真实网络环境动态变化的特点,提出了一种基于免疫的新型入侵防御模型。给出了模型及其检测性能的形式化定义和数学描述;建立了基于动态自体库的多代动态耐受、抗体动态变化的数学模型及变化方程。通过真实网络数据及KDDCup1999入侵检测评估数据进行了仿真对比实验。结果表明,本模型具有更高的检测率和更低的虚警率,有效提高了网络安全的防御能力。
This paper proposed an immune based novel model for intrusion prevention for dynamic change of real network.It presented the formal definition and mathematical description of the model and its detection performance.Based on dynamic self-sets,it designed the mathematical model and equations of dynamic tolerance and dynamic Ab.The experimental data included the data collected from the actual LANs and KDDCup1999 intrusion detection evaluation data sets.The experimental results prove that the model has higher detection rate and lower false alarm rate.It enhances the security prevention of the network.
出处
《计算机应用研究》
CSCD
北大核心
2012年第7期2712-2714,共3页
Application Research of Computers
基金
湖南省科技厅自然科技基金资助项目(2010CK3030)
关键词
入侵防御模型
人工免疫系统
虚警率
检测率
intrusion prevention model
artificial immune system
false alarm rate
detection rate
