计算机技术与发展2016,Vol.26Issue(10):77-82,6.DOI:10.3969/j.issn.1673-629X.2016.10.017
基于多源融合的网络安全态势层次感知
Hierarchical Awareness of Network Security Situation Based on Multi-source Fusion
摘要
Abstract
In recent year,network security situation awareness is an emerging security technology and garners widespread attentions be-cause it can solve the issues that the traditional security technology difficult to deal with,such as a single data source and the high false a-larm rate,and enhance the dynamic understanding abilities for the overall security situation. For the current research,a network security situation awareness model is proposed based on multi-source fusion which utilizes ant colony D-S evidence combination rule to deal with the multi-source data fusion problem with aim of reducing the subjective dependence of situation parameters. Meanwhile,the neural net-work is applied for searching key characteristics of security events to reduce data dimension,avoid dimension explosion and improve the real-time performance. It also discusses a hierarchical awareness algorithm and can map the discrete alarms to the dynamic threats tenden-cy in order to improve the capacity of quantitative analysis for network security. The simulation shows that the proposed model and algo-rithm can improve the detection rate and decrease false alarm rate,and dynamically monitor the evolution of the network security threats.关键词
网络安全态势感知/数据融合/蚁群算法/神经网络/特征选择Key words
network security situation awareness/data fusion/ant colony optimization/neural network/feature selection分类
信息技术与安全科学引用本文复制引用
张淑雯,刘效武,孙雪岩..基于多源融合的网络安全态势层次感知[J].计算机技术与发展,2016,26(10):77-82,6.基金项目
山东省高校科技计划项目(J11LG09) (J11LG09)