摘要
对净荷检测识别技术中的特征码提取方法进行了分析和研究,发现该技术目前主要采取手动寻找特征码的方式,需要投入大量的人力及时间,实现非常困难。针对该问题,提出了一种利用关联规则挖掘技术从IP流量载荷中提取应用层特征码的方法。实验结果表明,该方法准确率和有效率都非常高,可满足实际网络应用中的需求。
The signature extraction method in payload detection recognition technology are studied, and found that this technology mainly uses the way ofmanuaUy to search for signature, requires a lot of manpower and time. To address this issue, an effective method is presented, and association rule mining technology is used to extract the application layer signatures from IP traffic, and the results show that this method has high accurate and efficient rate, it meets the actual needs of network applications.
出处
《计算机工程与设计》
CSCD
北大核心
2009年第18期4224-4226,4230,共4页
Computer Engineering and Design
基金
国家自然科学基金项目(60873194)
关键词
应用层特征码
流量识别
统计
APRIORI
关联规则
application layer signature
traffic identification
statistic
Apriori
association rule