首页> 外国专利> APPARATUS FOR MEASURING SIMILARITY BETWEEN INTRUSION DETECTION RULES AND METHOD THEREFOR

APPARATUS FOR MEASURING SIMILARITY BETWEEN INTRUSION DETECTION RULES AND METHOD THEREFOR

机译：用于测量入侵检测规则之间的相似性的方法及其方法

页面导航

摘要
著录项
相似文献

摘要

The present invention relates to an apparatus and method that check similarity between intrusion detection rules used by an Intrusion Detection System. The apparatus for measuring similarity between intrusion detection rules includes a normalization unit for modifying a plurality of detection rules in a predetermined form, a division unit for dividing each of detection rules among a plurality of modified detection rules into a detection rule header and a detection rule option, a relationship operation unit for determining an inclusion relationship between a detection rule headers, and determining an inclusion relationship between a detection rule options, and a similarity measurement unit for measuring similarity between the detection rules based on the inclusion relationship between the detection rule headers and the inclusion relationship between the detection rule options.

机译：本发明涉及一种检查由入侵检测系统使用的入侵检测规则之间的相似性的装置和方法。用于测量入侵检测规则之间的相似性的设备包括：标准化单元，用于以预定形式修改多个检测规则;划分单元，用于将多个修改后的检测规则当中的每个检测规则划分为检测规则头和检测规则。选项，关系操作单元，用于确定检测规则头之间的包含关系，并确定检测规则选项之间的包含关系;以及相似度测量单元，用于基于检测规则头之间的包含关系来测量检测规则之间的相似度以及检测规则选项之间的包含关系。

著录项

公开/公告号US2016197957A1

专利类型
公开/公告日2016-07-07

原文格式PDF
申请/专利权人 ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE;
展开▼

申请/专利号US201414909580
发明设计人 KIWOOK SOHN;HYUNGGEUN OH;BYUNGCHUL BAE;YUJEONG HAN;JAESUNG LEE;
展开▼

申请日2014-07-14
分类号H04L29/06;
国家 US
入库时间 2022-08-21 14:32:26

相似文献

专利
外文文献
中文文献