计算机应用 ›› 2005, Vol. 25 ›› Issue (02): 383-385.DOI: 10.3724/SP.J.1087.2005.0383

• 信息安全 • 上一篇    下一篇

基于改进否定选择匹配算法的异常检测

肖晓丽,田悦宏,陈川   

  1. 长沙理工大学计算机与通信工程学院
  • 发布日期:2005-02-01 出版日期:2005-02-01

Anomaly detection based on improved negative selection matching algorithm

XIAO Xiao-li,TIAN Yue-hong,CHEN Chuan   

  1. ollege of Computer & Communication Engineering, Changsha University of Science & Technology
  • Online:2005-02-01 Published:2005-02-01

PDF

摘要:

使用了一种改进的否定选择匹配算法来检测异常行为。在这种算法中考虑了位置因素对两个序列匹配度的影响,从而能够更加准确识别自体与非自体,有效地减小检测集的规模。首先使用正常的序列调用生成初始检测集,然后通过学习来扩充检测集,使用最终得到的检测集扫描一定长度的调用序列,通过其中异常序列的比例来显示该段序列调用是否出现了异常。最后给出了实验结果。

关键词:  异常检测, 否定选择算法, 序列匹配

Abstract:

 A matching algorithm based on the negative selection for anomaly detection was presented in this paper. In the algorithm the effects of position between two temporal sequence to matching degree were considered. So it could distinguish accurately self and non-self, and reduced the size of detective set effectively. Using normal sequence calls, the initial detective set was created, and the detective set was extended by learning, according to the proportion of anomaly temporal sequence to judge whether this sequence was anomaly. Finally, the results of experiment was given.

Key words: anomaly detection, negative selection algorithm, sequence matching

中图分类号: 

版权所有 © 2021 四川计算机应用杂志社有限公司
蜀ICP备 05010208 号-3 新出网证(川)字026号
技术支持:北京玛格泰克科技发展有限公司
访问总数:
今日访问: