摘要
随着网络安全问题日益突出 ,入侵检测越来越受到关注 ,针对目前各种类型的防火墙和防病毒软件都存在一定的缺陷 ,该文基于仿生学的免疫原理 ,将肽链定义为在网络操作系统中由授权程序执行的系统调用短序列 ,提出了一种新型的入侵检测系统———基于免疫学的入侵检测系统 ,并对其主要功能模块 :免疫计算机和监控器进行了分析。
Currently, with more concern on the network security problem, researchers pay more attention to the intrusion detection technique. In order to overcome the defects of the network firewall and antivirus, according to the immunology principles of bionics, a new type of intrusion detection system-immunology based intrusion detection system is presented. In this paper short sequences of system calls that executed by privileged procedure were viewed as analogous to peptide. The function of two primary models(immune computer and detector) is analyzed. This system can improve the capability of real time detection and intrusion response.
出处
《南京理工大学学报》
EI
CAS
CSCD
北大核心
2002年第4期337-340,共4页
Journal of Nanjing University of Science and Technology
基金
国家自然科学基金资助项目(699730 2 0 )
国防科技预研行业基金资助项目
关键词
模型
肽
免疫学
入侵检测
系统调用
网络安全
免疫计算机
监控器
immunological technics, peptides, immunology
intrusion detection,system call,network security
