Volume 4 Number 6 (Jun. 2009)
Home > Archive > 2009 > Volume 4 Number 6 (Jun. 2009) >
JCP 2009 Vol.4(6): 453-460 ISSN: 1796-203X
doi: 10.4304/jcp.4.6.453-460

Research of Intelligent Rule-base Based on Multilayer Intrusion Detection

Sun Zhixin1, Jiao Lin2
1Institute of Computer, Nanjing University of Posts and Telecommunications, State Key Laboratory of Novel Software Technology, Nanjing, P.R. China
2Institute of Computer, Nanjing University of Posts and Telecommunications, Nanjing, P.R. China


Abstract—This paper presents a method to establish a rulebase based on multilayer intrusion detection. This rulebase contains two parts: the rulebase based on IP layer intrusion detection and the rulebase based on application layer intrusion detection. The former adopts a mixed quadratic network statistical model to test network traffic which has performances of dynamic principle and low False Positive Probability ( FPP) and low False Negative Probability ( FNP), and the rulebase is established using the twice-aggregation method. The latter is established by improved Snort. The simulation has proved that this intelligent rulebase can improve detection rate and ability to a large degree, and has low FPP and FNP.

Index Terms—Misuse detection, Anomaly detection, Intelligent rule-base.

[PDF]

Cite: Sun Zhixin, Jiao Lin, "Research of Intelligent Rule-base Based on Multilayer Intrusion Detection," Journal of Computers vol. 4, no. 6, pp. 453-460, 2009.

General Information

ISSN: 1796-203X
Frequency: Monthly
Editor-in-Chief: Prof. Liansheng Tan
Executive Editor: Ms. Nina Lee
Abstracting/ Indexing: DBLP, EBSCO,  ProQuest, INSPEC, ULRICH's Periodicals Directory, WorldCat, CNKI,etc
E-mail: jcp@iap.org
  • Sep 13, 2018 News!

    Vol 13, No 10 has been published with online version   [Click]

  • Apr 28, 2019 News!

    Vol 14, No 4 has been published with online version 8 papers are published in this issue after peer review   [Click]

  • Mar 20, 2019 News!

    Vol 14, No 3 has been published with online version   [Click]

  • Feb 22, 2019 News!

    Vol 14, No 2 has been published with online version 8 papers are published in this issue after peer review   [Click]

  • Jan 04, 2019 News!

    Vol 14, No 1 has been published with online version   [Click]

  • Read more>>