关键词: 入侵检测, 数据源, Jpcap, KDDCUP 99&prime, 实用性

Abstract:

Network Intrusion Detection System(NIDS) is one of the most effective methods in Internet security protection.  Numerous researchers at home and abroad have focused on it and obtained tremendous achievements in detection model, detection methods and practical application.  Nowadays KDDCUP 99' data sets are still the preferable data source to he used in testing the experiments of NIDS.  However, as a static data source, it doesn't work well in dynamic situations. Therefore, this paper establishes a new method with some characteristics of KDDCUP 99, by the data packet of Jpcap of JAVA to capture network
IP and pick up the information.

Key words: intrusion detection, data source, Jpcap, KDDCUP 99′ , practicability