摘要
随着计算机和网络技术的快速扩展,网络安全已经成为现代计算机系统面临的最重要的问题之一。入侵检测系统作为不同于防火墙和防病毒软件的主动防御的最后一道防线,能够用于监控网络或计算机系统的动态行为特征,并采取主动防御措施来阻止入侵的发生。本文从IDS的基本概念、入侵检测方法和入侵检测算法等几方面对入侵检测当前研究现状进行了详细的论述,并对入侵检测系统的未来发展趋势进行了讨论。这为今后深入IDS的研究提供了必要的技术依据和发展方向。
With the rapid development of computer and network techniques, computer &network security has been one of the keys to the modern computer system. Intrusion detection system (IDS) is differ from the firewall and the anti-virus software, because it can monitor the dynamic behavior character of the network or the computer system, and take active recovery measure to hold back intrusion. Research actuality of the IDS has been detailedly discussed from concept, means and algorithm of IDS, and put forward to IDS trend in the future. At the same time, it also provides essential technology and development to farther research IDS.
出处
《微计算机信息》
北大核心
2006年第12X期34-36,70,共4页
Control & Automation
基金
内蒙古自治区科委基金资助(2005N3001)
关键词
算机网络
入侵检测
正常行为
异常行为
误报率
漏报率
computer network,intrusion detection, normal behavior,anomaly behavior,false positive rate,false negative rate
