中文摘要：

为了提高入侵防御系统的检测性能,提出了一种结合免疫危险理论和否定选择机制的入侵防御模型.模型中使用危险理论进行异常检测,使用否定选择机制进行误用检测,二者结合使用提高了检测性能.给出了模型的实现思想和关键实现技术,并进行了仿真实验.结果表明,在真实收集的网络数据流和KDDCup检测评估数据上,本模型都具有较好的检测性能,提高了入侵防御能力.

英文摘要：

In order to improve the detection performance of intrusion prevention systems ,an intrusion prevention model which combines immune danger theory and negative selection mechanism was proposed .It uses the danger theory for anomaly detection and negative selection mechanism for misuse detection ,which improves the detection performance .The implementation and key technologies of the model are given ,and the simulation experiments are done .The experimental data included the data collected from the actual network and KDDCup intrusion detection evaluation data sets .The results show that the model has a good detection performance .