{"title":"Cloud Data Center Intrusion Detection Model Based on Active Rules","authors":"Wei Zhao, Xiaoming Jiang, Jingchun Wang","doi":"10.1109/TOCS50858.2020.9339687","DOIUrl":null,"url":null,"abstract":"Because the part of rules matching takes up a relatively high proportion in the current intrusion detection model and the rules adjustment can also influence the data accuracy, this paper proposes an anomalous detection model based on the active rules. Aiming at the problem of low rules adjustment efficiency in the current model, this paper designs the structure of active rules and a dynamic adjustment approach of active rules based on two-steps. This paper selects rules matching approach to update the matching process dynamically on the basis of activeness, and thus reducing the time complexity of intrusion detection system and false alarm rate. The experimental results indicate that the anomalous detection model relying on active rules proposed here can further improve the efficiency of rules matching and reduce the false alarm rate, performing a stronger practicability.","PeriodicalId":373862,"journal":{"name":"2020 IEEE Conference on Telecommunications, Optics and Computer Science (TOCS)","volume":"44 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2020-12-11","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2020 IEEE Conference on Telecommunications, Optics and Computer Science (TOCS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/TOCS50858.2020.9339687","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 0
Abstract
Because the part of rules matching takes up a relatively high proportion in the current intrusion detection model and the rules adjustment can also influence the data accuracy, this paper proposes an anomalous detection model based on the active rules. Aiming at the problem of low rules adjustment efficiency in the current model, this paper designs the structure of active rules and a dynamic adjustment approach of active rules based on two-steps. This paper selects rules matching approach to update the matching process dynamically on the basis of activeness, and thus reducing the time complexity of intrusion detection system and false alarm rate. The experimental results indicate that the anomalous detection model relying on active rules proposed here can further improve the efficiency of rules matching and reduce the false alarm rate, performing a stronger practicability.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
