Intrusion detection method based on active learning

The invention discloses an intrusion detection method based on active learning. The method comprises the steps of: collecting historical data through a system log, and carrying out preprocessing to obtain a label sample data set; constructing a detection classification model based on an active learn...

Ausführliche Beschreibung

Gespeichert in:

Bibliographische Detailangaben
Hauptverfasser:	WANG LONGHAI, YANG HAN, LI YONG, WANG KAIBO, CHEN TING, XU RUN, HU BINGXUAN, DAI QICAN, ZHENG ZHIHAO, REN TINGHAO, TANG JIAN, YU YUNHAO, JIN JIWEI, YANG JUNKUI, ZHOU ZHONGBO, JIANG ZAINENG, DENG DEMAO, DONG SHUANG, LI YAO, CHEN LINSEN, QIN YUMING
Format:	Patent
Sprache:	chi ; eng
Schlagworte:	CALCULATING COMPUTING COUNTING HANDLING RECORD CARRIERS PHYSICS PRESENTATION OF DATA RECOGNITION OF DATA RECORD CARRIERS
Online-Zugang:	Volltext bestellen
Tags:	Tag hinzufügen Keine Tags, Fügen Sie den ersten Tag hinzu!

container_end_page
container_issue
container_start_page
container_title
container_volume
creator	WANG LONGHAI YANG HAN LI YONG WANG KAIBO CHEN TING XU RUN HU BINGXUAN DAI QICAN ZHENG ZHIHAO REN TINGHAO TANG JIAN YU YUNHAO JIN JIWEI YANG JUNKUI ZHOU ZHONGBO JIANG ZAINENG DENG DEMAO DONG SHUANG LI YAO CHEN LINSEN QIN YUMING
description	The invention discloses an intrusion detection method based on active learning. The method comprises the steps of: collecting historical data through a system log, and carrying out preprocessing to obtain a label sample data set; constructing a detection classification model based on an active learning strategy, and training the detection classification model in combination with a semi-supervised direct push type support vector machine to form a detection multi-classifier; and performing clustering analysis by using a K-Means clustering algorithm, and outputting a detection result in combination with the trained detection classification model. The algorithm provided by the invention not only depends on the classification result of a single classifier to determine the labeled samples, but also depends on the voting results of classifiers to determine labeled samples by training a plurality of classifiers, so that the labeling accuracy can be well improved. 本发明公开了一种基于主动学习的入侵检测方法，包括，利用系统日志采集历史数据并进行预处理，得到标签样本数据集；
format	Patent
fullrecord	<record><control><sourceid>epo_EVB</sourceid><recordid>TN_cdi_epo_espacenet_CN113378955A</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>CN113378955A</sourcerecordid><originalsourceid>FETCH-epo_espacenet_CN113378955A3</originalsourceid><addsrcrecordid>eNrjZDD2zCspKi3OzM9TSEktSU0uAbFyU0sy8lMUkhKLU1MUgPxEoHBZqkJOamJRXmZeOg8Da1piTnEqL5TmZlB0cw1x9tBNLciPTy0uSExOzUstiXf2MzQ0Nja3sDQ1dTQmRg0AFHgsoQ</addsrcrecordid><sourcetype>Open Access Repository</sourcetype><iscdi>true</iscdi><recordtype>patent</recordtype></control><display><type>patent</type><title>Intrusion detection method based on active learning</title><source>esp@cenet</source><creator>WANG LONGHAI ; YANG HAN ; LI YONG ; WANG KAIBO ; CHEN TING ; XU RUN ; HU BINGXUAN ; DAI QICAN ; ZHENG ZHIHAO ; REN TINGHAO ; TANG JIAN ; YU YUNHAO ; JIN JIWEI ; YANG JUNKUI ; ZHOU ZHONGBO ; JIANG ZAINENG ; DENG DEMAO ; DONG SHUANG ; LI YAO ; CHEN LINSEN ; QIN YUMING</creator><creatorcontrib>WANG LONGHAI ; YANG HAN ; LI YONG ; WANG KAIBO ; CHEN TING ; XU RUN ; HU BINGXUAN ; DAI QICAN ; ZHENG ZHIHAO ; REN TINGHAO ; TANG JIAN ; YU YUNHAO ; JIN JIWEI ; YANG JUNKUI ; ZHOU ZHONGBO ; JIANG ZAINENG ; DENG DEMAO ; DONG SHUANG ; LI YAO ; CHEN LINSEN ; QIN YUMING</creatorcontrib><description>The invention discloses an intrusion detection method based on active learning. The method comprises the steps of: collecting historical data through a system log, and carrying out preprocessing to obtain a label sample data set; constructing a detection classification model based on an active learning strategy, and training the detection classification model in combination with a semi-supervised direct push type support vector machine to form a detection multi-classifier; and performing clustering analysis by using a K-Means clustering algorithm, and outputting a detection result in combination with the trained detection classification model. The algorithm provided by the invention not only depends on the classification result of a single classifier to determine the labeled samples, but also depends on the voting results of classifiers to determine labeled samples by training a plurality of classifiers, so that the labeling accuracy can be well improved. 本发明公开了一种基于主动学习的入侵检测方法，包括，利用系统日志采集历史数据并进行预处理，得到标签样本数据集；</description><language>chi ; eng</language><subject>CALCULATING ; COMPUTING ; COUNTING ; HANDLING RECORD CARRIERS ; PHYSICS ; PRESENTATION OF DATA ; RECOGNITION OF DATA ; RECORD CARRIERS</subject><creationdate>2021</creationdate><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&date=20210910&DB=EPODOC&CC=CN&NR=113378955A$$EHTML$$P50$$Gepo$$Hfree_for_read</linktohtml><link.rule.ids>230,308,776,881,25542,76289</link.rule.ids><linktorsrc>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&date=20210910&DB=EPODOC&CC=CN&NR=113378955A$$EView_record_in_European_Patent_Office$$FView_record_in_$$GEuropean_Patent_Office$$Hfree_for_read</linktorsrc></links><search><creatorcontrib>WANG LONGHAI</creatorcontrib><creatorcontrib>YANG HAN</creatorcontrib><creatorcontrib>LI YONG</creatorcontrib><creatorcontrib>WANG KAIBO</creatorcontrib><creatorcontrib>CHEN TING</creatorcontrib><creatorcontrib>XU RUN</creatorcontrib><creatorcontrib>HU BINGXUAN</creatorcontrib><creatorcontrib>DAI QICAN</creatorcontrib><creatorcontrib>ZHENG ZHIHAO</creatorcontrib><creatorcontrib>REN TINGHAO</creatorcontrib><creatorcontrib>TANG JIAN</creatorcontrib><creatorcontrib>YU YUNHAO</creatorcontrib><creatorcontrib>JIN JIWEI</creatorcontrib><creatorcontrib>YANG JUNKUI</creatorcontrib><creatorcontrib>ZHOU ZHONGBO</creatorcontrib><creatorcontrib>JIANG ZAINENG</creatorcontrib><creatorcontrib>DENG DEMAO</creatorcontrib><creatorcontrib>DONG SHUANG</creatorcontrib><creatorcontrib>LI YAO</creatorcontrib><creatorcontrib>CHEN LINSEN</creatorcontrib><creatorcontrib>QIN YUMING</creatorcontrib><title>Intrusion detection method based on active learning</title><description>The invention discloses an intrusion detection method based on active learning. The method comprises the steps of: collecting historical data through a system log, and carrying out preprocessing to obtain a label sample data set; constructing a detection classification model based on an active learning strategy, and training the detection classification model in combination with a semi-supervised direct push type support vector machine to form a detection multi-classifier; and performing clustering analysis by using a K-Means clustering algorithm, and outputting a detection result in combination with the trained detection classification model. The algorithm provided by the invention not only depends on the classification result of a single classifier to determine the labeled samples, but also depends on the voting results of classifiers to determine labeled samples by training a plurality of classifiers, so that the labeling accuracy can be well improved. 本发明公开了一种基于主动学习的入侵检测方法，包括，利用系统日志采集历史数据并进行预处理，得到标签样本数据集；</description><subject>CALCULATING</subject><subject>COMPUTING</subject><subject>COUNTING</subject><subject>HANDLING RECORD CARRIERS</subject><subject>PHYSICS</subject><subject>PRESENTATION OF DATA</subject><subject>RECOGNITION OF DATA</subject><subject>RECORD CARRIERS</subject><fulltext>true</fulltext><rsrctype>patent</rsrctype><creationdate>2021</creationdate><recordtype>patent</recordtype><sourceid>EVB</sourceid><recordid>eNrjZDD2zCspKi3OzM9TSEktSU0uAbFyU0sy8lMUkhKLU1MUgPxEoHBZqkJOamJRXmZeOg8Da1piTnEqL5TmZlB0cw1x9tBNLciPTy0uSExOzUstiXf2MzQ0Nja3sDQ1dTQmRg0AFHgsoQ</recordid><startdate>20210910</startdate><enddate>20210910</enddate><creator>WANG LONGHAI</creator><creator>YANG HAN</creator><creator>LI YONG</creator><creator>WANG KAIBO</creator><creator>CHEN TING</creator><creator>XU RUN</creator><creator>HU BINGXUAN</creator><creator>DAI QICAN</creator><creator>ZHENG ZHIHAO</creator><creator>REN TINGHAO</creator><creator>TANG JIAN</creator><creator>YU YUNHAO</creator><creator>JIN JIWEI</creator><creator>YANG JUNKUI</creator><creator>ZHOU ZHONGBO</creator><creator>JIANG ZAINENG</creator><creator>DENG DEMAO</creator><creator>DONG SHUANG</creator><creator>LI YAO</creator><creator>CHEN LINSEN</creator><creator>QIN YUMING</creator><scope>EVB</scope></search><sort><creationdate>20210910</creationdate><title>Intrusion detection method based on active learning</title><author>WANG LONGHAI ; YANG HAN ; LI YONG ; WANG KAIBO ; CHEN TING ; XU RUN ; HU BINGXUAN ; DAI QICAN ; ZHENG ZHIHAO ; REN TINGHAO ; TANG JIAN ; YU YUNHAO ; JIN JIWEI ; YANG JUNKUI ; ZHOU ZHONGBO ; JIANG ZAINENG ; DENG DEMAO ; DONG SHUANG ; LI YAO ; CHEN LINSEN ; QIN YUMING</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-epo_espacenet_CN113378955A3</frbrgroupid><rsrctype>patents</rsrctype><prefilter>patents</prefilter><language>chi ; eng</language><creationdate>2021</creationdate><topic>CALCULATING</topic><topic>COMPUTING</topic><topic>COUNTING</topic><topic>HANDLING RECORD CARRIERS</topic><topic>PHYSICS</topic><topic>PRESENTATION OF DATA</topic><topic>RECOGNITION OF DATA</topic><topic>RECORD CARRIERS</topic><toplevel>online_resources</toplevel><creatorcontrib>WANG LONGHAI</creatorcontrib><creatorcontrib>YANG HAN</creatorcontrib><creatorcontrib>LI YONG</creatorcontrib><creatorcontrib>WANG KAIBO</creatorcontrib><creatorcontrib>CHEN TING</creatorcontrib><creatorcontrib>XU RUN</creatorcontrib><creatorcontrib>HU BINGXUAN</creatorcontrib><creatorcontrib>DAI QICAN</creatorcontrib><creatorcontrib>ZHENG ZHIHAO</creatorcontrib><creatorcontrib>REN TINGHAO</creatorcontrib><creatorcontrib>TANG JIAN</creatorcontrib><creatorcontrib>YU YUNHAO</creatorcontrib><creatorcontrib>JIN JIWEI</creatorcontrib><creatorcontrib>YANG JUNKUI</creatorcontrib><creatorcontrib>ZHOU ZHONGBO</creatorcontrib><creatorcontrib>JIANG ZAINENG</creatorcontrib><creatorcontrib>DENG DEMAO</creatorcontrib><creatorcontrib>DONG SHUANG</creatorcontrib><creatorcontrib>LI YAO</creatorcontrib><creatorcontrib>CHEN LINSEN</creatorcontrib><creatorcontrib>QIN YUMING</creatorcontrib><collection>esp@cenet</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>WANG LONGHAI</au><au>YANG HAN</au><au>LI YONG</au><au>WANG KAIBO</au><au>CHEN TING</au><au>XU RUN</au><au>HU BINGXUAN</au><au>DAI QICAN</au><au>ZHENG ZHIHAO</au><au>REN TINGHAO</au><au>TANG JIAN</au><au>YU YUNHAO</au><au>JIN JIWEI</au><au>YANG JUNKUI</au><au>ZHOU ZHONGBO</au><au>JIANG ZAINENG</au><au>DENG DEMAO</au><au>DONG SHUANG</au><au>LI YAO</au><au>CHEN LINSEN</au><au>QIN YUMING</au><format>patent</format><genre>patent</genre><ristype>GEN</ristype><title>Intrusion detection method based on active learning</title><date>2021-09-10</date><risdate>2021</risdate><abstract>The invention discloses an intrusion detection method based on active learning. The method comprises the steps of: collecting historical data through a system log, and carrying out preprocessing to obtain a label sample data set; constructing a detection classification model based on an active learning strategy, and training the detection classification model in combination with a semi-supervised direct push type support vector machine to form a detection multi-classifier; and performing clustering analysis by using a K-Means clustering algorithm, and outputting a detection result in combination with the trained detection classification model. The algorithm provided by the invention not only depends on the classification result of a single classifier to determine the labeled samples, but also depends on the voting results of classifiers to determine labeled samples by training a plurality of classifiers, so that the labeling accuracy can be well improved. 本发明公开了一种基于主动学习的入侵检测方法，包括，利用系统日志采集历史数据并进行预处理，得到标签样本数据集；</abstract><oa>free_for_read</oa></addata></record>
fulltext	fulltext_linktorsrc
identifier
ispartof
issn
language	chi ; eng
recordid	cdi_epo_espacenet_CN113378955A
source	esp@cenet
subjects	CALCULATING COMPUTING COUNTING HANDLING RECORD CARRIERS PHYSICS PRESENTATION OF DATA RECOGNITION OF DATA RECORD CARRIERS
title	Intrusion detection method based on active learning
url	https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-02-12T13%3A44%3A25IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-epo_EVB&rft_val_fmt=info:ofi/fmt:kev:mtx:patent&rft.genre=patent&rft.au=WANG%20LONGHAI&rft.date=2021-09-10&rft_id=info:doi/&rft_dat=%3Cepo_EVB%3ECN113378955A%3C/epo_EVB%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rfr_iscdi=true