本文已被:浏览 1295次 下载 1893次
Received:November 21, 2016
Received:November 21, 2016
中文摘要: Linux防火墙为开发人员提供了一种可扩展的机制.本文通过对支持向量机原理的深入研究,提出了基于SVM的Linux防火墙系统的设计与实现.利用Netfilter框架捕获网络数据包,在用户态通过支持向量机算法模块对异常网络流量进行分类,并动态的添加Iptables规则,从而抵御网络攻击.实验证明,该系统模型对异常流量的分类有很高的精确度,因此SVM算法在Linux防火墙中的应用是可行的.
Abstract:Linux firewall provides a scalable mechanism for developers. After a thorough research of SVM principle, this paper, proposes the design and implementation of Linux firewall system based on SVM. The Netfilter framework is used to capture network packets. In the users’ space, anomaly network traffic is classified by support vector machine algorithm module and the rules of Iptables are added dynamically. Thus, the function of defending network attacks is realized. The experimental results demonstrate that the proposed system model has high detection accuracy for the classification of abnormal traffic. It proves that the SVM algorithm is feasible and effective in Linux firewall.
keywords: SVM firewall abnormal detection Netfilter Iptables
文章编号: 中图分类号: 文献标志码:
基金项目:教育部基金项目(NGII20150404)
引用文本:
吕赵明,张颖江,周昕,陈琼.SVM算法在Linux防火墙中的应用.计算机系统应用,2017,26(8):243-246
LV Zhao-Ming,ZHANG Ying-Jiang,ZHOU Xin,CHEN Qiong.Application of SVM Algorithm in Linux Firewall.COMPUTER SYSTEMS APPLICATIONS,2017,26(8):243-246
吕赵明,张颖江,周昕,陈琼.SVM算法在Linux防火墙中的应用.计算机系统应用,2017,26(8):243-246
LV Zhao-Ming,ZHANG Ying-Jiang,ZHOU Xin,CHEN Qiong.Application of SVM Algorithm in Linux Firewall.COMPUTER SYSTEMS APPLICATIONS,2017,26(8):243-246
