The formerincludesstatistical analysis,predictive pattern generation,neural network,genetic algorithm,sequence matching and learning,immunologic system,specification-based,data mining,integrity checker and Bayesian technology;the latterincludesexpert system,model-based,state transition analysis,Petri net,protocolanalysis and decision tree. There are also other analysis techniques such as alerts correlation analysis,visualization and trap.
异常检测和误用检测是入侵检测的主要分析方法,前者包括统计分析、模式预测、神经网络、遗传算法、序列匹配与学习、免疫系统、基于规范、数据挖掘、完整性检查和贝叶斯技术,后者包括专家系统、基于模型、状态转换分析、Petri网络、协议分析和决策树,其它还有报警关联分析、可视化和诱骗等分析技术。
参考来源 - 入侵检测技术研究综述·2,447,543篇论文数据,部分数据来源于NoteExpress
A general survey of the contemporary alerts correlation algorithms was given in this paper by a straight forward classification paradigm, and some problems for future research were addressed.
通过简单的分类综述了安全领域中报警事件关联算法的研究现状,并指出了需要进一步研究的问题。
The result of experiments proves effective correlation approaches fit with anonymized alerts.
实验结果表明,所采取的针对匿名报警的关联方法是有效的。
The correlation between shutter speed and aperture is shown, with a colour-coded warning that alerts users when the Settings are not in the proper range.
之间的快门速度和光圈显示的相关性,以彩色编码警告提醒用户在设置时,在适当的范围内没有。
应用推荐