%0 Journal Article
%T The Design and Research of Intrusion Detection System Based on Misuse and Anomaly<br>基于误用和异常技术相结合的入侵检测系统的设计与研究
%A Tian Jun-feng
%A Zhang Zhe
%A Zhao Wei-dong
%A <br>田俊峰
%A 张 喆
%A 赵卫东
%J 电子与信息学报
%D 2006
%I 
%X Currently, the false positive and the false negative of Intrusion Detection System are very high. It was always the main problem that bothered the user of IDS. But there are tow main technologies applied in IDS. To this problem, because both the technologies have its own advantages and they can supply for each other. So IDS combined with the tow technologies was used more and more widely. This paper presented a model of IDS based on combination of misuse detection and anomaly detection. In this model, misuse detection is based on pattern matching and Anomaly Detection is based on statistical analysis. It combined the tow technologies to reduce the false positive rate and the false negative rate in only one detection technology, and then to improve security of IDS.
%K Intrusion Detection System (IDS)
%K Anomaly detection
%K Misuse detection
%K Pattern matching
%K Statistical analysis<br>入侵检测系统
%K 异常检测
%K 误用检测
%K 模式匹配
%K 统计分析
%U http://www.alljournals.cn/get_abstract_url.aspx?pcid=5B3AB970F71A803DEACDC0559115BFCF0A068CD97DD29835&cid=1319827C0C74AAE8D654BEA21B7F54D3&jid=EFC0377B03BD8D0EF4BBB548AC5F739A&aid=DBDB1334E2FE0E5E&yid=37904DC365DD7266&vid=D3E34374A0D77D7F&iid=708DD6B15D2464E8&sid=7ABC4D8D4954AF61&eid=EA6B8E599015449E&journal_id=1009-5896&journal_name=电子与信息学报&referenced_num=5&reference_num=9