| With the rapid extension of internet and wide application of Internet, network security, has become more serious. Therefore, it is quite necessary for us to thoroughly analyze problems in network security, such as intrusion attack, to study intrusion detection technology, and also to develop effective intrusion detection systems (IDS). And the research about IDS is valuable and important for the development and application of network information systems.Through the study of current intrusion detection systems and biological immune system, an artificial immune-based intrusion detection system model is discussed and analyzed in full detail from the view of adaptability, flexible and efficiency. Thus the model indicates ways in which we can improve our existing intrusion detection systems. That is applying biological principles extracted from immune system (IS) to design and implement of intrusion detection systems.The main work in this thesis is that a new immune based dynamic intrusion detection model is proposed. In this model, the immaturity detector is made by this method has stronger pertinence and higher rate of survival. The new model adopt the method with integrate of detect based on misuse and detect based on abnormity, it overcome the defect of used single technique, and improves the detect efficiency of system. In addition the definition of self used a dynamic process, and this self set can reflect the normal data of network more all-sided, and it overcome the low percentage of coverage detect for self muster. Under the inspiration of phenomenon of co-evolution in the nature, co-evolution method is developed to strengthen the system. At last, simulation experiment for this new model is did, through the analysis of the result for simulation experiment, it proves that the new model and method has higher rate in making matured detector than the traditional model and method, and new model also has higher detecting rate on intrusion detection. Additionally, the co-evolution method was proved to be able to strengthen the system effectively.In this thesis, the history and present situation of research of IDS and AIS is introduced firstly. Then, a new model of IDS based on AIS is proposed in view of questions exist in current research. And co-evolution method is also proposed to strengthen the system. In the end, simulation experiment did and the result is analyzed. |
PDF Full Text Request