东北大学学报(自然科学版) ›› 2012, Vol. 33 ›› Issue (10): 1394-1398.DOI: -

• 论著 • 上一篇    下一篇

基于移动模糊推理的DoS攻击检测方法

李晶皎;许哲万;王爱侠;郭先日;   

  1. 东北大学信息科学与工程学院;金日成综合大学计算机科学大学;
  • 收稿日期:2013-06-19 修回日期:2013-06-19 出版日期:2012-10-15 发布日期:2013-04-04
  • 通讯作者: -
  • 作者简介:-
  • 基金资助:
    国家自然科学基金资助项目(60970157);;

DoS attack detection method based on removal fuzzy reasoning

Li, Jing-Jiao (1); Ho, Chol-Man (1); Wang, Ai-Xia (2); Gwak, Son-Il (2)   

  1. (1) School of Information Science and Engineering, Northeastern University, Shenyang 110819, China; (2) School of Computer Science, Kim IL Sung University, Pyongyang 999093, Korea, People's Democratic Rep
  • Received:2013-06-19 Revised:2013-06-19 Online:2012-10-15 Published:2013-04-04
  • Contact: Ho, C.-M.
  • About author:-
  • Supported by:
    -

摘要: 通过对入侵检测中模糊技术应用和移动模糊推理方法的研究,设计并实现了基于移动模糊推理的DoS攻击入侵检测系统.首先,描述了移动模糊推理方法与模糊推理步骤;其次,详细阐述了用时间差与IP地址分布变化的DoS攻击检测方法与基于移动模糊推理的攻击检测系统,创建了用于检测的模糊规则,确定网络攻击.最后,把DoS攻击工具与DARPA 98数据集作为入侵检测数据集,对基于移动模糊推理的方法与现行方法进行测试,验证了所提方法的有效性.

关键词: 网络, 模糊推理, 入侵检测, DoS攻击检测, 异常检测

Abstract: According to the study of the application of fuzzy technique in the intrusion detection and removal fuzzy reasoning method, the DoS attack intrusion detection system was designed and realized on the basis of removal fuzzy reasoning method. Firstly, the removal fuzzy reasoning method and fuzzy reasoning step were described. Then, DoS attack detection method using the interval and the IP address distribution change was described and so was the detection system based on removal fuzzy reasoning. The fuzzy rules for detection were made to determine network attack. Finally, the validity of the proposed method was checked by testing the method based on the removal fuzzy reasoning and the existing method with DoS attack tool and DARPA 98 dataset as intrusion detection dataset.

中图分类号: