Intrusion Detection System Based on Integration of #br#
Various Detection Technologies

doi:10.3969/j.issn.1006-2475.2016.05.021

Abstract

Abstract:

With the continuous development of network technology, inhouse network security is also increasingly subject to various known and unknown malware threats. In order

to detect these malicious programs, we designed and implemented an intrusion detection system based on integration of the depth detection technology, anomaly detection

technology, misuse detection technology. This intrusion detection system uses depth protocol analysis, behavioral analysis, feature matching, intelligent protocol

identification, protocol anomaly attack detection, traffic anomaly detection and so on. And this intrusion detection system realizes malicious programs detection through data

acquisition module, data reorganization module, data analysis module, console module and features for system management module. The system overcomes the shortcomings of

traditional single detection schemes, and can detect new generation of threats such as 0day attacks, polymorphic attacks, distortion attacks effectively.

Key words: depth detection, intrusion detection, misuse detection, protocol analysis

CLC Number:

TP393.1

ZHENG Shengjun1, XIA Yechao2，3, LI Jianhua2，3, WANG Li1, WANG Hongkai4. Intrusion Detection System Based on Integration of #br# Various Detection Technologies[J]. Computer and Modernization, doi: 10.3969/j.issn.1006-2475.2016.05.021.

References ［17］

	［1］
	任恒妮. 入侵检测系统综述［J］. 科技创新与应用, 2013(4):57.
［2］	穆成坡,黄厚宽,田盛丰. 入侵检测系统报警信息聚合与关联技术研究综述［J］. 计算机研究与发展, 2006,43(1):1-8.
［3］	Chen Xinming, Mu Beipeng, Chen Zhen. NetSecu: A collaborative network security platform for innetwork security［C］// 2011 3rd International Conference on Communications
	and Mobile Computing(CMC). 2011:59-64.
［4］	刘春. 基于组合算法选择特征的网络入侵检测模型［J］. 计算机与现代化, 2014(8):75-80.
［5］	卢荣. 基于Snort的分布式入侵检测系统［J］. 信息系统工程, 2015(1):134-135.
［6］	杨昆朋. 基于深度信念网络的入侵检测模型［J］. 现代计算机, 2015(2):10-14.
［7］	谢希仁. 计算机网络［M］. 6版. 北京:电子工业出版社, 2013.
［8］	吴剑,冯国瑞. 基于模拟退火和半监督聚类的入侵检测方法［J］. 计算机与现代化, 2014(11):27-30.
［9］	Mohammed M M Z E, Chan H A, Ventura N, et al. An automated signature generation approach for polymorphic worms using principal component analysis［J］. International
	Journal of Information Security Research (IJISR), 2011,1:45-52.
［10］	Shen Zihao, Wang Hui. Research on IPv6 intrusion detection system based on state protocol analysis［C］// Proceedings of the 2nd International Conference on
	Communication Systems, Networks and Applications. 2010,1:90-93.
［11］	罗雪萍,刘浩. 分布式无线网络入侵检测系统的设计与实现［J］. 计算机与现代化, 2012(7):157-159.
［12］	田俊峰,张喆,赵卫东. 基于误用和异常技术相结合的入侵检测系统的设计与研究［J］. 电子与信息学报, 2006,28(11):2162-2166.
［13］	李云波. 基于深度包检测技术入侵检测系统设计与实现［D］. 沈阳:东北大学, 2009.
［14］	朱钱广. 基于深度包过滤的网络入侵检测系统的设计与实现［D］. 上海:东华大学, 2010.
［15］	蔡敏,叶震,徐吉斌. 协议分析技术在入侵检测中的应用［J］. 计算机技术与发展, 2007,17(2):239-241.
［16］	杨阳,赵洪宋,岳雨俭,等. 基于协议分析的网络入侵检测系统［J］. 计算机与现代化, 2014(2):201-204.
［17］	耿俊成,牛霜霞,莫坚松. 一种基于协议分析和免疫原理的网络入侵检测模型［J］. 计算机与现代化, 2010(10):170-173.

[1]	PAN Yu-qing, ZHANG Su-ning, FENG Ren-jun, JING Dong-sheng. Intrusion Detection Method Based on Particle Swarm Optimization Combined with LightGBM [J]. Computer and Modernization, 2023, 0(04): 123-126.
[2]	RAO Hai-bing, ZHU Su-lei, YANG Chun-xia. Network Intrusion Detection Model Based on Space-time Feature Fusion and Attention Mechanism [J]. Computer and Modernization, 2022, 0(06): 116-121.
[3]	WU Shui-ming, JI Zhi-yuan, WANG Zhen-yu, JING Dong-sheng. Power Information Network Intrusion Detection Algorithm Based on Dueling-DDQN [J]. Computer and Modernization, 2021, 0(12): 43-47.
[4]	DENG Bin-tao, XU Sheng-chao. A Differential Evolution K-mediods Clustering Algorithm Based on Dynamic Gemini Population [J]. Computer and Modernization, 2021, 0(07): 54-59.
[5]	YAN Rui-an, ZHANG Li-chen. Intrusion Detection Based on Focal Loss and Convolutional Neural Network [J]. Computer and Modernization, 2021, 0(01): 65-69.
[6]	ZHANG Yu1,2, GUO Chun1,2, SHEN Guo-wei1,2, PING Yuan3. An IDS Alerts Preprocessing Method Based on Information Entropy [J]. Computer and Modernization, 2020, 0(05): 111-.
[7]	LI He-ting, FENG Ren-jun, CHEN Hai-yan, JING Dong-sheng. Intrusion Detection Based on Heterogeneous Convolutional Neural Network [J]. Computer and Modernization, 2019, 0(10): 117-.
[8]	ZHANG Su-ning, WANG Yue-juan, WU Shui-ming, JING Dong-sheng. Network Intrusion Data Clustering Algorithm Based on Krylov Subspace [J]. Computer and Modernization, 2019, 0(10): 121-.
[9]	JI Tian-ming1， ZHUANG Ling2， YU Jun1， ZHU Guang-xin1, WANG Zhao1， MIAO Jing-wen1. An Entropy Weight Fusion Localization Algorithm for #br# Terminal Intrusion Detection in Substation [J]. Computer and Modernization, 2019, 0(04): 114-.
[10]	CHU Gui-yang. Wireless Mesh Network Intrusion Detection Algorithm Based on Link Complete Coverage [J]. Computer and Modernization, 2017, 0(2): 61-66.
[11]	LI Peng， ZHOU Wen-huan. Mixed Intrusion Detection Algorithm Based on k-means and Decision Tree [J]. Computer and Modernization, 2017, 0(12): 12-16.
[12]	MEI Xiao-hui, LONG Yuan, ZHANG Jian-bo. Application of Local Outlier Mining Based on Cluster Merging Algorithm in Intrusion Detection [J]. Computer and Modernization, 2015, 0(8): 67-70.
[13]	REN Changrong. An Optimized KFCM Algorithm in Intrusion Detection Based on MCQPSOSA [J]. Computer and Modernization, 2015, 0(2): 90-.
[14]	SHEN Lixiang1, CAO Guo2. Intrusion Detection Data Classification by Distributed Computing [J]. Computer and Modernization, 2015, 0(12): 43-.
[15]	LIU Chun. Network Intrusion Detection Model Based on Combination Algorithm Selecting Features [J]. Computer and Modernization, 2014, 0(8): 75-80.

Intrusion Detection System Based on Integration of #br# Various Detection Technologies

Knowledge

Abstract

Cite this article

share this article

References ［17］

Related Articles 15

Recommended Articles

Metrics

Comments