%0 Journal Article
%T Study on GEP Rule Extraction Algorithm for Network Intrusion Detection<br>网络入侵检测的GEP规则提取算法研究
%A TANG Wan
%A CAO Yang
%A YANG Xi-min
%A QIN Jun
%A <br>唐菀
%A 曹阳
%A 杨喜敏
%A 覃俊
%J 计算机科学
%D 2009
%I 
%X Network intrusion detection based on machine learning suffers from the problems of low detection ratio for unknown intrusion and low detection efficiency due to many complex rules. To solve these problems, a constraint based gene expression programming (GEP) rule extraction algorithm (CGREA) was proposed. The intrusion detection rules were represented based on GEP model,and a constraint grammar was defined to guarantee the rules closeness and adequacy. It restricted the ratio of randomly selecting various symbols in the gene head of GEP rules, and used the elitist strategy to guarantee convergence. The KDI)CUP' 99 DATA Set was used for evaluation the intrusion detection rules auto-extracted by CGREA. A 91%probability of detection was achieved, and three unknown attacks' probabilities of detection were more than 88 %. These results indicate that the intrusion detection rules that extracted by CGREA are effective, simple, and capable of detecting unknown intrusions. Moreover, the efficiency of rule generation and detection is improved.
%K Network intrusion detection
%K GEP (gene expression programming)
%K Rule extraction
%K Constraint grammar
%K E-litist strategy<br>网络入侵检测
%K 基因表达式编程
%K 规则提取
%K 约束文法
%K 精英策略
%U http://www.alljournals.cn/get_abstract_url.aspx?pcid=5B3AB970F71A803DEACDC0559115BFCF0A068CD97DD29835&cid=8240383F08CE46C8B05036380D75B607&jid=64A12D73428C8B8DBFB978D04DFEB3C1&aid=BB9C5262D0E70C8168F51EACFC2EE49D&yid=DE12191FBD62783C&vid=933658645952ED9F&iid=708DD6B15D2464E8&sid=9C65ADEB5990B252&eid=0D0D661F0B316AD5&journal_id=1002-137X&journal_name=计算机科学&referenced_num=0&reference_num=13