设计了基于序列聚类算法的故障告警关联规则分析模型。
A fault alarms correlation rule analysis model based on sequence clustering algorithm is designed.
最后对告警关联模块使用的告警事件关联技术进行了重点研究。
At last, the paper lays stress on the technology of alarm event correlation, which used in the alarm event correlation module.
在此思想基础上,进一步提出了基于描述逻辑的IDS告警关联模型。
Based on this thought, we propose an IDS alert correlation model based on description logics.
众多的入侵检测告警关联方法中,因果关联是最具代表性的方法之一。
Causal correlation method was one of the most representative methods for instruction detection alert correlation.
为此给出了依据网络对象间的告警关联关系构建相应网络依赖图的方法。
In this paper, a method of constructing corresponding dependency graphs is provided according to the alarm correlation relation of network objects.
告警数据集在网站上提供免费下载,可作为告警关联分析和研究使用的标准数据集。
These datasets can be downloaded freely on the Web and used as the standard datasets for alarm correlation analysis and study.
针对关联规则数量巨大并且存在极大冗余的问题,提出无冗余告警关联规则产生算法。
Non-redundant association rules mining algorithm is proposed to deal with the problem of huge rules' number and redundancy.
在电信网络告警管理中,告警关联系统是很重要的部分,它是用于分析告警数据的专家系统。
Alarm correlation system is an expertise system to analyze alarm data, which is an important part of telecommunication network management of alarm.
随后对攻击数据采集子系统,告警关联分析子系统和攻击数据生成子系统进行了详细设计和实现。
Second, the paper proposed the design and implementation of threat data collection subsystem, alert correlation subsystem and attack data extraction subsystem.
然而电信网络本身的复杂性导致获取必要的知识来为某个特定网络构建一个告警关联系统十分困难。
But the complexity of the telecommunication network leads to acquiring necessary knowledge to construct a correlation system for a special net is very difficult.
告警关联模块使用的告警事件关联技术,具有较高的实用价值和理论分析价值,本文对其进行了重点研究。
The technology of alarm event correlation has high value in practicability and theory, this paper lays stress on it.
网络告警关联中隐含着丰富的模式知识,通过研究告警信息间的因果相关性,能够显著的提高网络故障管理的智能度。
Rich pattern knowledge regarding network behavior is hidden behind alert correlation, when pattern knowledge is discovered and research, network fault management will be more intelligent.
文章介绍了在我们设计开发的分布式协同入侵检测系统(DACIDS)中通过对入侵行为模式的匹配而进行告警关联的方法。
In this paper, we propose to use intrusion action pattern to correlate alerts in our Distributed Active Collaboration intrusion Detection System (DACIDS).
关联规则挖掘算法是通信网告警相关性分析中的重要方法。
Mining association rules is one of the primary methods used in telecommunication alarm correlation analysis.
序列模式挖掘作为一种时序数据分析的有效手段,能够自动从告警中提取出有助于关联分析的情景规则。
As an effective means to analyze timed data sequential pattern mining can extract episode rules from alarms, which is helpful to analyze correlation.
网络告警因果关联技术有助于管理员根据告警之间的因果关系构建攻击场景,及时调整防范措施。
Network alarm causal correlation technology can help network administrators construct attack scenarios and take timely responses by unveiling the causal relationship of intrusion alarms.
加权关联规则挖掘是告警相关性分析的重要手段。
The mining of weighted association rules is a primary method used in alarm correlation analysis.
并通过定义与深入分析故障告警中的关联规则和情节规则,提出了一个基于数据融合和数据挖掘技术的网络故障管理的架构模型。
It presents a new model for network fault management based on data fusion and data mining by defining and discussing the association rule and the frequent episodes.
本地通信网是由大量设备与链路互连组成的,其中一个部件的故障可能关联多个设备和链路,从而引发大量衍生的告警。
Local telecommunication network is connected by quite a lot of equipment and link, any default of a component may communicate with several other equipments, and cause many children alarm.
对告警事件进行关联处理,去除冗余告警,是网络管理需要解决的一个关键问题。
Alarm event correlation, which can reduce redundant alarm events, is a key problem to network management.
通过结合相关联的同步数字体系(SDH)设备的告警进行相关性分析,从而达到对网络故障定位的目的。
Throught the correlation analysis of the WDM and SDH alarms, we can locate the faults in the WDM network.
该文针对网管告警数据库中时间序列存在的连续性、不确定性和模糊性问题,提出了一种基于时态关联规则挖掘告警库的新方法。
For the problems of continuity, uncertainty and fuzziness in the time-series of the network management alarm database, this pa-per puts forward a new mining method based on time-series rules.
对关联窗口的选择进行了讨论,提出了一种新的关联窗口选择方法以保证故障的告警集合的完整性,并证明了其有效性。
To keep the integrity of alarm set, an original method is given and testified after the methods of selecting correlation window are discussed.
对告警发生的时间特性进行了分析,给出了一种自动伸缩的关联窗口选择算法,保证了告警集合的完整性。
After analyzing the temporal character of alarm, an auto-flexible correlation window selection algorithm is given to assure the integrity of alarm set.
因此,通过应用告警相关方法开发入侵检测系统的协作模块,通过分析关联告警产生清晰的攻击过程描述,通过生成综合告警来减少假告警的数量提高检测效率非常必要。
So, it's necessary that apply alert correlation methods develop several IDS coordination modes to analysis alerts and build distinct attack scenarios and reduce the volume of false alerts.
关联规则挖掘算法是通信网告警相关性分析中的重要方法。
Research of alarm correlation method based on dependency search tree in electric power communication network;
关联规则挖掘算法是通信网告警相关性分析中的重要方法。
Research of alarm correlation method based on dependency search tree in electric power communication network;
应用推荐