%0 Journal Article
%T Access control-based host anomaly intrusion detection model<br>基于访问控制的主机异常入侵检测模型*
%A PI Jian-yong
%A GONG Ming-shu
%A LIU Xin-song
%A LI Ze-ping
%A <br>皮建勇
%A 巩明树
%A 刘心松
%A 李泽平
%J 计算机应用研究
%D 2009
%I 
%X The model of intrusion detection based on access control(ACBIDS) was proposed under the precondition of positive access reference by access control mechanism, in which combined advantage of access control and intrusion detection respectively. Constructed the activity associate graph based on direct acyclic graph (DAG) according to restriction relations among system call functions, and constructed divergence function about activity associated graph for computing the match degree between actual system call sequence and activity associated graph. The ACBIDS could detect the intrusion action in host finally. The experiment shows this model implements low false positive rate and low false negative rate, and upper efficiency.
%K access control
%K intrusion detection
%K ACBIDS
%K activity associated graph<br>访问控制
%K 入侵检测
%K ACBIDS(基于访问控制的主机异常入侵检测模型)
%K 活动关联图
%U http://www.alljournals.cn/get_abstract_url.aspx?pcid=5B3AB970F71A803DEACDC0559115BFCF0A068CD97DD29835&cid=8240383F08CE46C8B05036380D75B607&jid=A9D9BE08CDC44144BE8B5685705D3AED&aid=5CE692930E66428E6F2EE713AB2FE30C&yid=DE12191FBD62783C&vid=96C778EE049EE47D&iid=0B39A22176CE99FB&sid=71128DCBD6E39665&eid=B3AAD7DC3C912B50&journal_id=1001-3695&journal_name=计算机应用研究&referenced_num=1&reference_num=17