首页|期刊导航|计算机工程与应用|联邦学习驱动的网络入侵检测研究综述

联邦学习驱动的网络入侵检测研究综述OA

Review of Network Intrusion Detection Driven by Federated Learning

中文摘要英文摘要

随着网络流量的快速增长和攻击手段的不断演化,传统入侵检测方法在数据孤岛、隐私保护和异构环境适配方面暴露出明显不足.联邦学习因具备"数据不出本地"的特性,为跨域协作建模和隐私保护提供了新思路,但针对其在入侵检测领域的研究尚缺乏系统化梳理与方法演进分析.围绕联邦学习驱动的网络入侵检测研究,从聚合策略、隐私保护机制和检测技术三大核心维度出发,系统总结近年来的研究进展,分析各类方法的优劣与适用场景,并归纳当前面临的挑战与发展趋势.为该领域相关研究人员提供研究思路,也为实际系统的设计与部署提供理论支撑.

With the rapid growth of network traffic and the continuous evolution of attack methods,traditional intrusion detection methods have exposed obvious deficiencies in data island,privacy protection and heterogeneous environment adaptation.Federated learning provides a new idea for cross-domain collaborative modeling and privacy protection because of its characteristic of"data not being local".However,there is still a lack of systematic combing and method evolution analysis for its research in the field of intrusion detection.This paper focuses on the research of network intru-sion detection driven by federated learning.Starting from the three core dimensions of aggregation strategy,privacy pro-tection mechanism and detection technology,the paper systematically summarizes the research progress in recent years,analyzes the advantages and disadvantages of various methods and applicable scenarios,and summarizes the current chal-lenges and development trends.This paper provides research ideas for relevant researchers in this field,and also provides theoretical support for the design and deployment of actual systems.

张舒琦;王海凤;王再平;赵鹏;刘英华;池志宏;赵昕晟

内蒙古工业大学 智能科学与技术学院,呼和浩特 010080内蒙古工业大学 智能科学与技术学院,呼和浩特 010080内蒙古自治区大数据中心 信息技术服务九处,呼和浩特 010011内蒙古工业大学 智能科学与技术学院,呼和浩特 010080内蒙古工业大学 智能科学与技术学院,呼和浩特 010080内蒙古工业大学 智能科学与技术学院,呼和浩特 010080内蒙古工业大学 智能科学与技术学院,呼和浩特 010080

信息技术与安全科学

联邦学习(FL)入侵检测聚合策略隐私保护检测技术

federal learning(FL)intrusion detectionaggregation strategyprivacy protectiondetection technology

《计算机工程与应用》 2026 (8)

48-63,16

内蒙古自治区直属高校基本科研业务费项目(JY20240010)内蒙古自治区自然科学基金(2023LHMS06016).

10.3778/j.issn.1002-8331.2506-0010

评论