Anormaly Intrusion Detection Based on SOM
In this paper, we first introduce the principle of SOM algorithm, and then study the real-time intrusion detection system, finding it is not very good in the real-time intrusion detection system. Regarding this problem, this paper presents a real-time intrusion detection model based on SOM algorithm, and takes the system call process as studying object to illustrate the performance of this model. Finally, we compared the detection ability of SOM algorithm with other intrusion detection models by simulation experiment, and the experiment shows that intrusion detection of anomalous based SOM not only meets requirements, but also has a strong nature of real-time, and the nature of real-time of the anomaly intrusion detection model based on SOM is 100 times higher than that of the Forrest and Lees method.
SOM algorithm real-time intrusion detection
LI Min Wang Dongliang
Network Center Beijing University of Civil Engineering and Architecture Beijing China
国际会议
2009 WASE International Conference on Information Engineering(2009年国际信息工程会议)(ICIE 2009)
太原
英文
40-43
2009-07-10(万方平台首次上网日期,不代表论文的发表时间)