摘要
首先对入侵检测技术的研究背景进行阐述,然后对入侵检测系统的有关技术、网络入侵检测技术、评价入侵检测系统的指标和CIDF标准框架进行了深入研究。其中对于入侵检测系统详细地讲解了基于主机的入侵检测系统和基于网络的入侵检测系统;对于入侵检测技术深入讲解了误用检测技术、异常检测技术和混合检测技术;对于入侵检测性能指标详细讲解了漏报和误报、系统负荷、检测延迟时间和抗攻击能力。最后对网络入侵检测技术的未来发展方向进行了展望。
The research background of intrusion detection technology is elaborate first, and then the deep researches are made for the related technology on intrusion detection system, network intrusion detection technology, performance index on intrusion detection system and CIDF standard framework. For intrusion detection system, host based intrusion detection sys- tem and network based intrusion detection system are presented in detail; for intrusion detection technology, misuse intru- sion detection, anomaly intrusion detection and mixed intrusion detection are deeply elaborated; for performance index on intrusion detection, leakage report and false report, system load, detection delay time and anti - attack capacity are presen- ted in detail. At last, the development orientation about intrusion detection technology in the future is forecast.
出处
《智能计算机与应用》
2013年第2期62-64,67,共4页
Intelligent Computer and Applications
基金
黑龙江省自然科学基金项目(F200923)
关键词
入侵检测系统
入侵检测技术
性能指标
体系结构
Intrusion Detection System
Intrusion Detection Technology
Performance Index
Architecture
