Institutional Repository
| 基于D-S证据理论的主机违规行为检查方法 | |
| Alternative Title | host violation check method based on d-s evidence theory |
| 王斌; 连一峰; 陈恺 | |
| 2012 | |
| Source | Computer Applications and Software
 |
| ISSN | 1000-386X |
| Volume | 29Issue:2Pages:90-93,148 |
| English Abstract | 主机违规行为是能对主机及其所在信息系统的安全造成影响,或泄露主机上的重要信息的行为。提出一种主机违规检查方法,针对主机违规行为证据信息进行单一证 据源基础概率判定,并通过D-S证据理论对其进行融合,计算得到主机行为的违规系数,以此作为违规检查的判定依据。实验表明,该方法能够满足主机违规检查 工作的应用需求,具有较低的误报率和漏检率。 |
| Indexed Type | cscd,cnki,wanfang |
| Abstract | Host violation is a such behaviour that it either breaks the security of the host and its information system or reveals the important information on the host.In this paper,a host violation checking method is proposed,which discriminates the underlying probability of single evidence resource aiming at the evidence information of each violation of host independently,and then fuses them based on D-S evidence theory,and attains violation coefficient of the host behaviour according to calculation,that will be considered as the discrimination basis for violation checking.Experiments indicate that by using this method,the application demand in host violation checking is able to be met with lower false alarm rate and missing rate. |
| Keyword | D-s Evidence Theory Host Violation Anomaly Detection |
| Department | 王斌, 中国科学院软件研究所, 信息安全国家重点实验室;;信息网络安全公安部重点实验室;;信息安全共性技术国家工程研究中心, 北京 100190, 中国. 连一峰, 中国科学院软件研究所, 信息安全国家重点实验室;;信息安全共性技术国家工程研究中心, 北京 100190, 中国. 陈恺, 中国科学院软件研究所, 信息安全国家重点实验室;;信息安全共性技术国家工程研究中心, 北京 100190, 中国. |
| Subject | Computer Science |
| Language | 中文 |
| Content Type | 期刊论文 |
| URI | http://ir.iscas.ac.cn/handle/311060/14683 |
| Collection | 中国科学院软件研究所 |
| Recommended Citation GB/T 7714 | 王斌,连一峰,陈恺. 基于D-S证据理论的主机违规行为检查方法[J]. Computer Applications and Software,2012,29(2):90-93,148. |
| APA | 王斌,连一峰,&陈恺.(2012).基于D-S证据理论的主机违规行为检查方法.Computer Applications and Software,29(2),90-93,148. |
| MLA | 王斌,et al."基于D-S证据理论的主机违规行为检查方法".Computer Applications and Software 29.2(2012):90-93,148. |
| Files in This Item: | ||||||
| File Name/Size | DocType | Version | Access | License | ||
| 基于D-S证据理论的主机违规行为检查方法(645KB) | 开放获取 | License | Application Full Text | |||
Items in the repository are protected by copyright, with all rights reserved, unless otherwise indicated.
Edit Comment