An operating system identification method based on random forest

An operating system and random forest technology, applied in the computer field, can solve the problems of high training overhead and application performance bottlenecks of the support vector machine method
CN110519128BActive Publication Date: 2021-02-19XI AN JIAOTONG UNIV +1
3 Cites 0 Cited by

Patent Information

Authority / Receiving Office
CN · China
Patent Type
Patents(China)
Current Assignee / Owner
XI AN JIAOTONG UNIV
Publication Date
2021-02-19

Smart Images

  • Figure 1
    Figure 1
  • Figure 2
    Figure 2
  • Figure 3
    Figure 3
Patent Text Reader

Abstract

The invention discloses an operating system identification method based on a random forest, which adopts a Monte Carlo method to randomly sample a fingerprint library to form a training set and a test set, and then performs vectorization processing; and uses a binning method to perform data passivation processing; Based on the set layered architecture, according to the operating system category identification layer, operating system major version number identification layer and operating system detailed version identification layer, train random forest classifiers respectively, build multiple decision trees, each tree uses its own out-of-package estimation If the test accuracy is higher than the set accuracy threshold, it will be added to the random forest; local incremental training of layered architecture, parameter adjustment processing to improve model accuracy; identification and prediction of real detection traffic, each tree in the random forest Both give a classification result, adopt the equal voting method, and select the category with the most votes as the final prediction result. It can effectively identify unknown fingerprints and improve the accuracy of identification.
Need to check novelty before this filing date? Find Prior Art

Description

technical field

[0001] The invention belongs to the technical field of computers, and in particular relates to an operating system identification method based on a random forest. Background technique

[0002] With the rapid popularization of the Internet, the importance of the network security field has become increasingly prominent. The detection and identification of the operating system is of great significance to the assessment and protection of network security, and it is also an important step in asset identification.

[0003] At present, most of the detection tools are mainly based on the known operating system fingerprint library, using the traditional static fingerprint matching method to judge, there is a problem of difficulty in identifying unknown fingerprints, and the introduction of machine learning related algorithms to further mine the sufficient and necessary conditions for fingerprints from features , can effectively solve the problem of unknown fingerprint...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More