Research And Implementation Of Real Time IDES Based On CVE

On the base of analyzing the structure, building methods and running characters of the Intrusion Detection System, and according to the practical requirements, this paper puts forward an Intrusion Detection System Based on CVE (Common Vulnerabilities and Exponsures).The main research objects are the exposures in CVE. After discuss the charaters and structure of CVE , an Intrusion Detection Knowledge base has been built. On account of adopting the exposures in CVE as data source,ultilizing the mature and opening study and referring manner of CVE , ensures that the security contents of CVE standards are advanced and up to the minute.Furthermore this system uses snort rule language and Fuzzy Reasoning in the system.Consequently, this system has low false alarm rate as well as low miss alarm rate. All these characters make this Instrusion Detection Expert System have much more protecting capacity. With the improving and enhance of the technique, a much safer ,reliable ,and efficient real time IDES based on CVE can be build and have a much wider foreground.