Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Negative selection intrusion detection method based on variable self-body radius

A technology of intrusion detection and self-radius, which is applied in the field of network and network security, can solve the problems that the detector set cannot cover the heterogeneous space well, the correct detection rate is low, and the false positive rate is high.

Inactive Publication Date: 2012-06-20
XIDIAN UNIV
View PDF2 Cites 10 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0007] In engineering applications, in order to detect abnormal behavior more effectively, the expectation of the negative selection algorithm is mainly to allow the detector set generated outside the self-region to cover as much of the heterogeneous space as possible in order to improve the accuracy of detection. However, the fixed The self-region covered by the self-set of the radius cannot express the self-space well, so that the detector set generated by NSA cannot cover the heterogeneous space well, resulting in poor detection effect when NSA is used for network intrusion detection. , that is, the problem with a low positive detection rate and a high false positive rate

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Negative selection intrusion detection method based on variable self-body radius
  • Negative selection intrusion detection method based on variable self-body radius
  • Negative selection intrusion detection method based on variable self-body radius

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0035] refer to figure 1 , the specific implementation steps of the present invention are as follows:

[0036] Step 1. Preprocess the KDD99 data set which is the benchmark problem of intrusion detection.

[0037] The KDD99 data set, namely the KDD CUP 1999 data set, is the benchmark data in the field of network intrusion detection. It provides researchers in the field of intrusion detection with the only publicly available labeled data set, laying a solid foundation for the research of network intrusion detection based on computational intelligence. base. The KDD99 data set consists of 5 million records in total, and each data contains 41-dimensional features. It also provides a 10% subset, which has a total of 494,021 data, of which 396,743 are abnormal data and 97,278 are normal data. . The present invention first will preprocess the KDD data set, and convert the value of each dimension into a value on [0, 1]. The specific realization of this step is as follows:

[0038] 1...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a negative selection intrusion detection method based on the variable self-body radius, and the method is mainly used for solving the problem of poor detection effect because the self-body space formed by setting a fixed autologous radius can not be better covered in the traditional method. The negative selection intrusion detection method is implemented through the following steps: 1) pretreating a KDD (Knowledge Discovery In Database) 99data set; 2) selecting parts of normal data from the data set to serve as an self-body so as to form a self-body set; 3) randomly generating a foreign body, and setting the variable self-body radius for all self-bodies by utilizing a distance characteristic between the self-body and the generated foreign body; (4) training a detector set D; and (5) detecting the test data by use of the detector set D so as to judge whether the test data is normal or abnormal. The negative selection intrusion detection method based on the variable self-body radius has the advantages of high positive detection rate and low misinformation rate, the effect of the negative selection intrusion detection method can be effectively improved under the condition that the self-body data amount is small, the negative selection intrusion detection method is used for identifying the abnormal network data, and ensuring the network safety.

Description

technical field [0001] The invention belongs to the field of network technology, relates to network security, and is also the application of an artificial immune system in the field of network security. Specifically, it is an intrusion detection method based on negative selection with variable self-radius, which can be used for network data analysis and timely identification Whether the network communication status is abnormal. Background technique [0002] With the advent of the information age, e-commerce, e-government and the Internet are widely used in people's daily life, and human beings have entered the information society. However, when various fields benefit from the rapidly expanding amount of information, open resources, and shared information between networks, the security of system data is bound to be seriously threatened. Today, our commonly used security technologies mainly include firewalls, anti-virus software, user authentication, encryption technology, an...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06
Inventor 公茂果焦李成王彦涛马晶晶马文萍张建段婷婷王爽尚荣华
Owner XIDIAN UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com