| 托管式安全监控系统 |
| |
| 作者姓名: | 连一峰 戴英侠 王航 |
| |
| 作者单位: | 中国科学院研究生院信息安全国家重点实验室, 北京 100039 |
| |
| 基金项目: | 国家信息化工作领导小组计算机网络系统安全技术研究项目资助课题;国家重点基础研究发展规划项目资助课题(G1999035801) |
| |
| 摘 要: | 分析了目前托管式安全监控 (MSM)系统存在的优势及缺陷,提出了将机器学习应用到MSM系统的观点,以提高系统的分析效率,克服存在的社会工程安全问题.MSM系统是为了克服单一安全技术的缺陷而兴起的大范围、综合化、与人工分析相结合的安全服务系统.通过对客户网络中安全事件的实时监控,依靠系统安全分析员及安全知识库,提供对网络入侵的准确判断和即时响应
|
| 关 键 词: | 托管式安全监控 入侵检测 机器学习 数据挖掘 |
| 收稿时间: | 2001-04-29 |
Managed Security Monitoring System |
| |
| Authors: | Lian Yifeng Dai Yingxia Wang Hang |
| |
| Institution: | State Key Laboratorg of Information Semrity, The Graduate School of the Chinese Academy of Sciences, Beijing 100039 |
| |
| Abstract: | Managed Security Monitoring System is a kind of global,synthetic security service system cooperating with artificial analysis which is put forward to overcome defects of single security technology.It can supply appropriate judgment and instant response to network intrusions.Advantages and disadvantages of MSM systems are analyzed.The viewpoint of applying Machine Learning to MSM systems is presented in order to improve analysis efficiency and overcome security flaws relating to social engineering. |
| |
| Keywords: | managed security monitoring intrusion detection machine learning data mining |
|
| 点击此处可从《》浏览原始摘要信息 |
| 点击此处可从《》下载免费的PDF全文 |
