Incremental intrusion detection method fusing rough set theory and DS evidence theory
A technology of evidence theory and intrusion detection, applied in electrical components, transmission systems, etc., to reduce the possibility of evidence conflict, overcome the high false alarm rate, and improve detection accuracy
- Summary
- Abstract
- Description
- Claims
- Application Information
AI Technical Summary
Problems solved by technology
Method used
Image
Examples
Embodiment Construction
[0036] The preferred embodiments of the present invention will be described in detail below with reference to the accompanying drawings.
[0037] The incremental intrusion detection system proposed by the present invention is as follows: figure 1 As shown, it mainly includes three parts: misuse detection module, anomaly detection module, and incremental unit. Specifically, rough set theory is used to reduce the attributes and rules of the network attack data, build a misuse detection engine, and use the pattern matching method to judge whether the network is under attack according to the established decision rule base. For the attack types not included in the decision rule base, the anomaly detection engine based on the DS evidence theory is used for detection; the DS evidence theory fuses the attribute features after the rough set reduction, and according to the fused identification framework Θ{normal, Abnormal, uncertain} support to determine whether the network is under at...
PUM
Abstract
Description
Claims
Application Information
- R&D Engineer
- R&D Manager
- IP Professional
- Industry Leading Data Capabilities
- Powerful AI technology
- Patent DNA Extraction
Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.
© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com