论文部分内容阅读
为了合理地解决入侵检测系统的误报率和无关报警率过高的问题,提出一种基于直觉模糊综合评判的多源告警验证方法.该方法将直觉模糊综合评判理论引入告警验证领域,并针对传统方法利用单一信息对告警判断效果不明显的问题,建立了多源多层评判因素集合.同时,给出了各评判因素隶属度和非隶属度的建立方法.最后,通过实例验证了该方法的有效性.
In order to reasonably solve the problem of false alarm rate and unrelated alarm rate of intrusion detection system, a multi-source alarm verification method based on intuitionistic fuzzy comprehensive evaluation is proposed.This method introduces intuitionistic fuzzy comprehensive evaluation theory into the field of alarm verification, The traditional method uses a single information to judge the effect of the alarm is not obvious, set up a multi-source multi-layer set of evaluation factors.At the same time, give the method of establishing membership and non-membership of each factor.Finally, Effectiveness.