计算机与现代化 ›› 2011, Vol. 1 ›› Issue (1): 29-3.doi: 10.3969/j.issn.1006-2475.2011.01.008

• 算法分析与设计 • 上一篇    下一篇

降低误报率算法模型研究

郭 良   

  1. 聊城大学东昌学院电子科学系,山东 聊城 252500
  • 收稿日期:2010-08-04 修回日期:1900-01-01 出版日期:2011-01-20 发布日期:2011-01-20

Alarming Deluge Down Arithmetic Model Research

GUO Liang   

  1. Dept. of Electronical Science, Dongchang College of Liaocheng University, Liaocheng 252500, China
  • Received:2010-08-04 Revised:1900-01-01 Online:2011-01-20 Published:2011-01-20

摘要:

为了解决入侵检测系统中误报率高的问题,通过对报警信息进行分析,提出报警抑制模型。该模型针对入侵检测系统中的持续的无动作高频报警信息,利用人体嗅觉“钝化”的原理,降低无动作信息的频率,实现入侵检测系统的低误报率,同时方便管理员管理。

关键词: 入侵检测, 报警泛滥, 报警抑制

Abstract:

In order to solve the high rate of wrong alarming in IDS, the paper designs an alarming control model by analyzing alarming information. This model which using human olfaction passivation aims at the sustaining high frequency noaction alarming information to reduce rate of noaction alarming in IDS, achieves the low wrong alarming of IDS, and makes it convenient to administrators.

Key words: IDS, alarming deluge, alarming control