2013 | OriginalPaper | Buchkapitel
The Research of a Cooperative Model Intrusion Detection System
verfasst von : Zhu Qiang, Shun Yuqiang
Erschienen in: Advanced Technology in Teaching
Verlag: Springer Berlin Heidelberg
Aktivieren Sie unsere intelligente Suche, um passende Fachinhalte oder Patente zu finden.
Wählen Sie Textabschnitte aus um mit Künstlicher Intelligenz passenden Patente zu finden. powered by
Markieren Sie Textabschnitte, um KI-gestützt weitere passende Inhalte zu finden. powered by
The paper introduces a model of the Cooperative System of Honeypots and Intrusion Detection System (CSHIDS). The method of implementing the cooperation is: firstly, the Honeypots and HoneyWall try to record various attackers’ behaviors and transfer them to Remote Log Server, secondly, the cooperative system divides the records into several classes by using the way of Unsupervised Clustering; thirdly, make the records labeled; and then extract attack-rules from the labeled records by Decision Tree; at last, add the new attack-rules to the Intrusion Detection System’s rule-set in a certain time interval. The purpose is that Intrusion Detection System (IDS) can detect the new attacks. This model’s effectiveness has been confirmed by the simulated experiments.