Hadoop-based distributed intrusion detection system

An intrusion detection system and hadoop cluster technology, applied in transmission systems, special data processing applications, instruments, etc., can solve problems such as imperfect key algorithms, unreasonable system architecture, and inability to effectively improve system detection rates, and achieve good interoperability Sex, the effect of reducing the false negative rate

Active Publication Date: 2016-03-09
GUILIN UNIV OF ELECTRONIC TECH
View PDF4 Cites 31 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, the existing DIDS has problems such as unreasonable system architecture, low interface standardization, and imperfect key algorithms, which reduce the parall

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Hadoop-based distributed intrusion detection system
  • Hadoop-based distributed intrusion detection system
  • Hadoop-based distributed intrusion detection system

Examples

Experimental program
Comparison scheme
Effect test

Example Embodiment

[0093] The present invention will be described in more detail below in conjunction with the accompanying drawings.

[0094] see figure 1 , a Hadoop-based distributed intrusion detection system of the present invention includes: a data acquisition module, a data storage module, a control center and a data analysis module, wherein the control center includes a system management module, a system monitoring module, a task scheduling module and an alarm response module;

[0095] The data acquisition module is composed of multiple independent sensors distributed on the network. After the network data is captured and processed through the sensors, the collected data is uploaded to the HDFS data sub-node of the data storage module, that is, stored in the HDFS data set ;

[0096] The working steps of the sensor are as follows: first, collect the original data packets of the network through network monitoring; second, analyze the data packets, and calculate the unique connection identi...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a Hadoop-based distributed intrusion detection system which comprises a data acquisition module, a data storage module, a control center and a data analysis module, wherein the control center comprises a system management module, a system monitor module, a task scheduling module and an alarm response module. By utilizing a Hadoop-based distributed computation framework, the system is allowed to have good interoperability, and the system reliability is improved; the system carries out data parallel acquisition through a distributed mode, thereby improving data acquisition capability and reducing packet loss probability; in an algorithm adopted in the system, data is allocated according to capacity and load of nodes, and adjustment is carried out by utilizing a dynamic load balancing strategy, so that data processing capacity of the nodes is given effective play to, and load balancing of the system is maintained; and through the algorithm, the case of distributing the data comprising the same attack to two or more detection nodes for processing separately, which damages integrity of the data, is prevented, and detection efficiency is improved effectively.

Description

technical field [0001] The invention relates to the field of computer network security, in particular to a Hadoop-based distributed intrusion detection system. Background technique [0002] The traditional intrusion detection system cannot meet people's security needs because it is difficult to deal with the increasing mass of network data, the system performance declines, the packet loss rate increases, and the detection rate decreases. The distributed intrusion detection system (DistributedInstructionDetectionSystem, DIDS) uses a distributed structure for data collection and parallel processing, effectively improving the efficiency of intrusion detection in high-speed network environments, and has become the mainstream of intrusion detection technology research. However, the existing DIDS has problems such as unreasonable system architecture, low interface standardization, and imperfect key algorithms, which reduce the parallel processing capability of DIDS and the interop...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L29/06H04L29/08G06F17/30
CPCG06F16/182H04L63/1416H04L63/1466H04L67/1097
Inventor 武小年张润莲李豪张鑫孟川
Owner GUILIN UNIV OF ELECTRONIC TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap