A Network Intrusion Detection Algorithm Based on FSA Model

At present network attack technology is constantly updated,which bring network security workers huge challenges. In view of the fact that the existing intrusion detection technology is difficult to detect multi-step fragmentation attacks, distributed attacks and evading attacks,a network intrusion detection algorithm called FSA algorithm is proposed based on finite state automaton (FSA) model in this paper, and the key implementation technology is analyzed.The state transition diagram is used to illustrate the attack triggering and transfer process,and according to different protocol data,four different mechanisms are designed to detect invasion based on FSA.Experiments show that the algorithm not only can more precisely detect common attacks,but also can detect the unobvious attacks such as distributed and fragment attack very well,which can not be detected by other detection technologies.It is believe that it removes the limitations of the current intrusion detection technology and has an important research and practice value.

[1]  Luis A. Trejo,et al.  Analyzing Log Files for Postmortem Intrusion Detection , 2012, IEEE Transactions on Systems, Man, and Cybernetics, Part C (Applications and Reviews).

[2]  Zhang Zhi IPv6 Network Intrusion Detection Protocol Analysis Techniques , 2013 .

[3]  Franka Schuster,et al.  A distributed intrusion detection system for industrial automation networks , 2012, Proceedings of 2012 IEEE 17th International Conference on Emerging Technologies & Factory Automation (ETFA 2012).

[4]  Allen Y. Yang,et al.  Robust Face Recognition via Sparse Representation , 2009, IEEE Transactions on Pattern Analysis and Machine Intelligence.

[5]  Harish Kumar,et al.  A Reference Dataset for Network Traffic Activity Based Intrusion Detection System , 2015, Int. J. Comput. Commun. Control.

[6]  Jung-Ho Ahn,et al.  Face Recognition via Sparse Representation using the ROMP Method , 2017 .

[7]  Carlos García Garino,et al.  Automatic network intrusion detection: Current techniques and open issues , 2012, Comput. Electr. Eng..