%0 Journal Article
%T Proactive Forensics Method Based on Intrusion Detection System<br>基于入侵检测系统的主动取证方法
%A WANG Yi-miao
%A PENG Hong
%A CHEN Long
%A <br>王一淼
%A 彭宏
%A 陈龙
%J 计算机应用研究
%D 2007
%I 
%X So it is costly to be evidence as a whole.A proactive forensics method was proposed to reduce the huge amount of data and reserve valuable evidence according to IDS alerts.The method was viable and reach a good trade-off performance,between possible evidence and cost.
%K proactive forensics
%K intrusion detection system(IDS)
%K computer evidence
%K log<br>主动取证
%K 入侵检测系统
%K 计算机证据
%K 日志
%K 入侵
%K 检测系统
%K 取证方法
%K Intrusion
%K Detection
%K System
%K Based
%K Method
%K 网络数据
%K 存储方法
%K 类型
%K 分类
%K 安全事件
%K 日志
%K 选取
%K 设计
%K 数据缩减
%K 证据
%K 价值
%U http://www.alljournals.cn/get_abstract_url.aspx?pcid=5B3AB970F71A803DEACDC0559115BFCF0A068CD97DD29835&cid=8240383F08CE46C8B05036380D75B607&jid=A9D9BE08CDC44144BE8B5685705D3AED&aid=EF4AD2E7BFCF0B30FEF53FB591D7CF0D&yid=A732AF04DDA03BB3&vid=B91E8C6D6FE990DB&iid=94C357A881DFC066&sid=B4E8EA49DAAEB84F&eid=69E4C201C13601F9&journal_id=1001-3695&journal_name=计算机应用研究&referenced_num=0&reference_num=8