重新设计实现了报警模块,将警报格式转换成标准的idmef格式,使其可以方便的集成到分布式入侵检测系统中。
We also design and realize the modular which can converse the alert to uniform standard IDMEF form that make it integrate into distributed intrusion detection system conveniently.
在文中,针对误用网络型入侵检测系统建立一个警报过滤机制,该机制找出攻击成功时所需具备的环境条件。
This paper proposes an alarm filtering scheme to improve the efficiency of misuse-type network intrusion detection system.
针对大量的异构入侵检测传感器产生的警报泛滥问题,提出了一种在线警报聚类融合模型。
In respect to the issue of alarms flooding, which is resulted from multiple detection sensors in terms of intrusions, this article proposes a novel on-line model on alarms clustering and fusion.
该文从网络入侵检测系统(NIDS)的工作原理、配置策略和警报格式三方面对其重复警报信息量大、误报多的原因进行了详细分析,指出了因此带来的危害。
The paper analyzes the reasons and damages of magnitude alerts and false positive of Network Intrusion Detection System (NIDS) from the principle, configuration strategies and the form of alerts.
该文从网络入侵检测系统(NIDS)的工作原理、配置策略和警报格式三方面对其重复警报信息量大、误报多的原因进行了详细分析,指出了因此带来的危害。
The paper analyzes the reasons and damages of magnitude alerts and false positive of Network Intrusion Detection System (NIDS) from the principle, configuration strategies and the form of alerts.
应用推荐