Dissertation > Excellent graduate degree dissertation topics show

An Intrusion Detection System for High-Speed Networks

Author: XieTianYu
Tutor: CaoQiYing
School: Donghua University
Course: Applied Computer Technology
Keywords: Distributed Intrusion Detection Hierarchical distributed Hadoop cluster MapReduce programming model Association rules algorithm
CLC: TP393.08
Type: Master's thesis
Year: 2012
Downloads: 53
Quote: 0
Read: Download Dissertation

Abstract


The Internet to flourish, the network has played an increasingly important role in people's daily lives. , Followed by network attacks have become increasingly complex, pluralistic, intelligent. How to ensure the network from network attack intrusion destruction by the attention. Intrusion detection as a way to take the initiative to find attacks technologies effectively compensate for the shortcomings of the traditional firewall technology security technology. With the increasing network size and network traffic, the traditional intrusion detection systems the structure exposed more and more limitations and defects, such as heavy workload, the slow response, lack of processing power and a single point of failure problem. Design a distributed intrusion detection system based on Hadoop cluster. Using a distributed three-tier architecture: detection agent for the first layer, is responsible for detecting intrusion security incidents; data collection for the second layer, processing the data of the first layer; based Hadoop cluster building monitoring center is located in the third layer . First, the article describes the definition, importance and methods of intrusion detection. Analysis of the main problems facing the environment of high-speed network intrusion detection system and influencing factors. Subsequently, highlights three common distributed intrusion detection system architecture: the centralized distributed, hierarchical distributed and peer-to-peer collaboration, research and compare the advantages and disadvantages among them. Then, this paper analyzes the Hadoop cluster technology, its two core technologies HDFS distributed file system and MapReduce parallel programming model to carry out a detailed study. Then, the article discusses the design of the overall architecture of the system. And analysis of the key technologies in the functional design of the system components as well as architecture design. Then discuss the design and implementation of several key components of the system. Finally, the paper proposes a FP-Growth algorithm based on the MapReduce programming model used to solve problems in traditional association rules algorithms can not deal with the massive invasion of record. The core idea of ??the algorithm is: will not be based on memory to build the FP-tree decomposition trees FP-subtree by subtree mining, global frequency mode. Based on the experimental results, the algorithm in dealing with large-scale data, along with the increase in compute nodes, the performance of the algorithm is linearly proportional to the increase.

Related Dissertations

  1. Performance Optimization and Applications of MapReduce in Cloud Computing,TP3
  2. The Design of Campus Network Distributed Intrusion Detection System Based on Snort,TP393.08
  3. Host-based Instrusion Detection Method of the Advanced Intelligence,TP393.08
  4. Research of Hierarchical Distributed Intrusion Detection System,TP393.08
  5. Research of Environmental Contamination Accidents Emergency Control System Based on GIS and Spatial Data Mining,TP311.13
  6. Association rules based on coronary heart disease database data mining system design and implementation,TP311.13
  7. The Research and Application of Distributed Intrusion Detection System Based on Snort,TP393.08
  8. The Research of Alert Correlation Analysis Technique Based on Ontology and Multi-Agent Framework,TP393.08
  9. Application and Realization of Data Mining in E-commerce,TP311.13
  10. The Application of Data Mining Technology in the Supermarket Marketing System,TP311.13
  11. Scheduling Algorithm Based on Association Rules Applied Research System,TP311.13
  12. The Research and Implementation of Snort Intrusion Detection System Based on the Campus Network Environment,TP393.18
  13. System of Real-time Power Quality Monitoring and Management for Distribution Network and Reaserch of Impvoving Measurement,TM933.4
  14. Distributed clustering technology research and its application,TP18
  15. Research on Customers’ Consumption Behavior in E-commerce,TP311.13
  16. Research and Application of data mining technology in the tobacco business CRM,TP311.13
  17. Application of Distributed Intrusion Detection Technology in Electronic Commerce,TP393.08
  18. The Research and Implementation of the Chinese Character Recognition Based on MapReduce,TP391.41
  19. The Research of K-Neareast Neighbor Classification Algorithm Based on Hadoop Platform,TP311.13
  20. Design and Implementation of Distributed Intrusion Detection System Based on Snort,TP393.08

CLC: > Industrial Technology > Automation technology,computer technology > Computing technology,computer technology > Computer applications > Computer network > General issues > Computer Network Security
© 2012 www.DissertationTopic.Net  Mobile