Common Inirusion Detection Framework (CIDF) is an important step towards enabling different intrusion and response (IDR) components to interoperate with each other.
公共入侵监测系统架构(CIDF)便是迈向使不同的入侵监测与响应(idr)组件完成互操作的重要一步。
This framework is based on CIDF, and uses Data Mining to mine intrusion models, then automatically transforms it into intrusion detection rules for rule base's updating.
该系统基于公共入侵检测框架(CIDF)构建,当出现新攻击时,利用数据挖掘对海量数据进行挖掘,得出入侵模型后由系统自动转换为检测规则以实现规则库的自动更新。
This paper proves that the model is feasible for intrusion detection and describes the IDS that USES this model to describe net-attacks by CIDF (Common intrusion detection Framework).
本文论证了应用该模型的可行性,并利用通用入侵检测框架CIDF对应用该模型的入侵检测系统进行了描述,最后与其它入侵检测模型进行了比较。
On the designing part of the RAAS, the generation of events, the normal library of users, the process of detecting and analyzing, and the response units were described based on the CIDF.
在此基础上,在实时审计分析系统的设计部分,依照通用的入侵检测模型(CIDF)对监控事件的产生、用户正常规则库、监控分析过程和响应单元逐个进行阐述。
On the designing part of the RAAS, the generation of events, the normal library of users, the process of detecting and analyzing, and the response units were described based on the CIDF.
在此基础上,在实时审计分析系统的设计部分,依照通用的入侵检测模型(CIDF)对监控事件的产生、用户正常规则库、监控分析过程和响应单元逐个进行阐述。
应用推荐