改进BM算法及其在网络入侵检测中的应用
发布时间:2018-09-19 08:22
【摘要】:传统BM算法存在一些无用的比较,影响了字符串的匹配速度,降低了入侵检测效率。为此,提出一种改进BM算法,并将其用于网络入侵检测系统的检测引擎中。实验结果表明,较采用BM算法的Snort检测器,改进BM算法构建的网络入侵检测系统可有效降低误报率和漏报率,提高入侵检测率与时间利用率。显然,这对提升网络入侵检测系统的整体能力非常有用。
[Abstract]:The traditional BM algorithm has some useless comparisons, which affects the matching speed of strings and reduces the efficiency of intrusion detection. This paper presents an improved BM algorithm and applies it to the detection engine of network intrusion detection system. The experimental results show that compared with the Snort detector based on BM algorithm, the network intrusion detection system constructed by the improved BM algorithm can effectively reduce the false alarm rate and false alarm rate, and improve the intrusion detection rate and time utilization ratio. Obviously, this is very useful to enhance the overall capability of network intrusion detection system.
【作者单位】: 南京理工大学;南京审计学院;南京联迪信息系统有限公司;
【基金】:国家发改委发改办[2012]3179号下一代互联网络扫描与补丁管理系统产业化项目基金资助
【分类号】:TP393.08
[Abstract]:The traditional BM algorithm has some useless comparisons, which affects the matching speed of strings and reduces the efficiency of intrusion detection. This paper presents an improved BM algorithm and applies it to the detection engine of network intrusion detection system. The experimental results show that compared with the Snort detector based on BM algorithm, the network intrusion detection system constructed by the improved BM algorithm can effectively reduce the false alarm rate and false alarm rate, and improve the intrusion detection rate and time utilization ratio. Obviously, this is very useful to enhance the overall capability of network intrusion detection system.
【作者单位】: 南京理工大学;南京审计学院;南京联迪信息系统有限公司;
【基金】:国家发改委发改办[2012]3179号下一代互联网络扫描与补丁管理系统产业化项目基金资助
【分类号】:TP393.08
【参考文献】
相关期刊论文 前3条
1 魏e,
本文编号:2249575
本文链接:https://www.wllwen.com/guanlilunwen/ydhl/2249575.html
