摘要
为了提高入侵检测系统的效率,将数据挖掘技术应用于网络入侵检测。本文实现了基于数据挖掘的入侵检测系统,采用了分层分类与关联规则分析数据。经过系统测试,能够完成对正常与异常类的分类,用关联规则分析产生入侵检测规则,并通过规则判断对入侵行为进行报警。
In order to improve the efficiency of intrusion detection system,applying data mining techniques to the network intrusion detection.This paper give an intrusion detection system based on data mining,which use the data mining techniques of hiberarchy classification and association analysis.The result of system test shows that classification analysis module can automatically build the classes of network normal activity and abnormal activity and association analyzer can automatically construct new intrusion detection rules,while the system can warn against the intrusion activity.
出处
《微计算机信息》
2009年第24期30-32,共3页
Control & Automation
关键词
入侵检测
数据挖掘
分层分类
关联规则技术
intrusion detection
data mining
hiberarchy classification
association analysis
