关键词: 入侵检测 数据融合 模糊规则 入侵通报

Abstract:

In this paper, we present a detection technology based on intrusion events in order to overcome the shortcomings of high false alert rate, serious red  undant alerts and poor expression about the intrusion activities in today＇s intrusion detection systems. We describe the design ideas about the importa ant methods used in this technology such as multi-sensor data fusion, raw alert distinguishment based on fuzzy rules and so on in detail. Experimental r esults show that compared with the existing intrusion detection systems, this technology can reduce the system test cost greatly.

Key words: （intrusion detection, data fusion, fuzzy rule, intrusion report）