首页> 外国专利> Intrusion detection method using adaptive rule estimation in network-based instrusion detection system

Intrusion detection method using adaptive rule estimation in network-based instrusion detection system

机译：基于网络的入侵检测系统中基于自适应规则估计的入侵检测方法

页面导航

摘要
著录项
相似文献

摘要

An intrusion detection method by adaptive rule estimation in a network-based intrusion detection system (NDS) is disclosed. The method includes collecting a packet on a network and searching for an original rule most similar to the collected packet from a rule database in which a rule for intrusion detection is stored, and judging whether a hacker intrudes by estimating a changed position of the collected packet from the original rule. Accordingly, it is possible to prevent an indirect attack of a hacker using a packet whose number of bits is changed due to deletion/insertion of characters from/into the packet.

机译：公开了一种基于自适应规则估计的基于网络的入侵检测系统（NDS）中的入侵检测方法。该方法包括：在网络上收集分组;从存储入侵检测规则的规则数据库中搜索与收集的分组最相似的原始规则;以及通过估计收集的分组的变化位置来判断黑客是否入侵。从原来的规则。相应地，可以防止使用由于其字符的删除/插入而改变了比特数的分组的黑客的间接攻击。

著录项

公开/公告号US2003115486A1

专利类型
公开/公告日2003-06-19

原文格式PDF
申请/专利权人 CHOI BYEONG CHEOL;SEO DONG IL;SOHN SUNG WON;PARK CHEE HANG;
展开▼

申请/专利号US20020273140
发明设计人 DONG IL SEO;CHEE HANG PARK;SUNG WON SOHN;BYEONG CHEOL CHOI;
展开▼

申请日2002-10-18
分类号G06F11/30;
国家 US
入库时间 2022-08-22 00:11:25

相似文献

专利
外文文献
中文文献