According to the differences of intrusion detection theory, it includes misuse-based detection and anomaly-based intrusion.
根据入侵检测原理的不同,入侵检测可分为误用检测和异常检测两种。
This paper focus on Anomaly-based Network Intrusion Detection System (ANIDS), which use two methods to design and implement anomaly detection .
ANIDS是基于异常检测技术的入侵检测系统,它从两个方面来实现异常检测。
The intrusion detection system divides into two categories according to the detection technique: anomaly-based detection system and misuse-based detection system.
入侵检测按照检测技术分为两类:基于异常的入侵检测和基于误用的入侵检测。
On the base of the characteristic of modes of anomaly-based and signature-based, a network invasion detection system is proposed to use the virtue of two modes to detect network invasion.
针对异常发现技术和模式匹配技术各有利弊的特点,设计了将这两种技术综合运用的网络入侵检测系统。
By constructing state machine and get information from it, this approach can contain both anomaly-based and misuse-based intrusion detection methods, and gain the better detection capability.
通过构建状态机并从其中提取出相关信息,不仅可以同时兼顾基于误用和基于异常的两种检测方法,而且使得它们获得了更好的检测效果。
Then it analyzed intrusion detection technology, compared the merits and shortcomings of Anomaly-based detection and Misuse-based detection, and depicted the source data of different detection ways.
然后分析入侵检测技术。比较异常检测和滥用检测各自的优缺点,以及各种检测方法的数据来源。
This article presents a anomaly detection method based on correlation eigen matrix and neural network.
本文描述了一个基于相关特征矩阵和神经网络的异常检测方法。
Although the filtering method in frequency domain can solve the time variant filtering problem based on Fourier transform, the method may appear a false anomaly in conjunct part between Windows.
频率域滤波方法虽然可解决时变滤波问题,但这种方法是基于傅里叶变换,在窗口与窗口之间的接合部位会出现假异常。
Based on the oilwell feature to reflect earthquakes. we have studied the mechanism of oilwell dynamic anomaly formation.
在分析油井映震特征的基础上,着重对油井动态异常的形成机理进行了研究。
Based on the analysis of characteristics of hyperspectral imagery, the methods of anomaly detection are studied systematically in this paper.
本文在深入分析高光谱数据特点的基础上,系统地研究了基于光谱维的图像异常检测方法。
This paper presents a new algorithm , an anomaly detection algorithm based on hidden pattern.
该文提供了一种新的基于隐含模式的异常检测算法。
A new method for the anomaly detection based on the attributes similarity and the cloud model was proposed to alleviate the high false positive rate problem in the detection.
针对网络异常检测虚警率偏高的问题,提出了一种基于属性相似度云模型的网络异常检测新方法。
The paper presents an artificial immunity based multimodal evolution approach for anomaly intrusion detection.
提出一种基于免疫的多峰值进化异常入侵检测方法。
Based on the analysis of view maintenance anomaly, the concurrent updates are found to be one of the main reasons that cause view maintenance anomaly.
通过对视图维护过程中的更新异常进行分析,发现并发更新是导致视图维护异常的主要原因。
Based on the mechanism to induce groundwater anomaly, the interferences of precursory anomaly and its recognition are discussed, and the view of "rain and groundwater interference" is questioned.
按照地下水诱发异常的机理,讨论了诱发前兆异常的干扰与识别问题,并对“降水、地下水干扰”观点提出质疑。
Being testified by field work the exploration model was established based on the remote sensing alteration information anomaly and image geology characteristics in the area.
通过野外的验证工作,据此建立了该地区应用遥感蚀变信息异常、影像地质特征进行找矿的模型。
This paper presents a new method, which is active detect network scans, based on TCP's port and flag's anomaly detection.
提出一种基于TCP端口和标志位异常检测的主动检测扫描技术。
A matching algorithm based on the negative selection for anomaly detection was presented in this paper.
使用了一种改进的否定选择匹配算法来检测异常行为。
An anomaly detection model based on the multi-feature similarity in large-scale network is proposed in this paper.
提出了大规模网络中一种基于相似度的异常检测模型。
Traditional statistics-based approach utilizes a stationary model, in which anomaly value is calculated according to events frequencies in history.
传统的基于概率统计的方法采用的是静态模型,即根据历史上事件出现的频率来计算新事件的异常值。
Results show that the thermal effect of plate motion driven mantle flow and its contribution to the observed heat flow is greater than that due to internal density anomaly (tomography based).
结果表明,与地幔内部密度异常产生的热效应相比,运动的板块及其激发的地幔流动在全球地表观测热流的产生和分布特征上起着更为重要的作用。
This model uses not only misuse but also anomaly detection technology, and at deployment the host based subsystem cooperates with the network-based subsystem.
该系统模型既综合了基于异常行为的入侵检测和基于特征的入侵检测技术,在配置上又采用主机配置和网络配置相互配合的方式。
This article presents an anomaly detection method based on correlation eigen matrix and neural network.
文章描述了一个基于相关特征矩阵和神经网络的异常检测方法。
Through the comparison of the results from the experiment and wavelet analysis, it shows that network-wide traffic anomaly detection based on subspace method is more simple and effective.
通过实验结果与小波分析结果的对比,证明了基于子空间方法的大规模网络流量异常检测是一种既简单又高效的方法。
Anomaly detection based on network traffic model is one of the important research directions in traffic anomaly detection.
基于网络流量模型的异常检测是流量异常检测的一个重要研究方向。
It detect the anomaly mainly through establishing the normal behavior model database that anomaly detection method based on the procedure behavior.
基于程序行为的异常检测方法主要通过建立程序正常行为模式库来检测入侵。
A network traffic anomaly detection mechanism is presented based on support vector machine (SVM).
提出了一种基于支持向量机的网络流量异常检测方法。
A new anomaly detection model based on system call macro was presented.
提出了一个基于系统调用宏的异常检测模型。
This paper proposes a new Support Vector Machine(SVM) for anomaly intrusion detection method based on Latent Semantic Indexing(LSI).
论文提出了一种基于潜在语义索引(LSI)和支持向量机(SVM)的异常入侵检测方法。
This paper proposes a new anomaly intrusion detection method based on support vector data description (SVDD).
提出了一种基于支持向量数据描述算法的异常检测方法。
应用推荐