现代电子技术2024,Vol.47Issue(7):115-121,7.DOI:10.16652/j.issn.1004-373x.2024.07.020
基于DS证据理论的多源网络安全数据融合模型
Multi-source network security data fusion model based on DS evidence theory
摘要
Abstract
Network security situation awareness involves a large amount of multi-source data,and its information extraction is difficult,which is an urgent problem to be solved at present.In combination with the existing network security practices,a multi-source network security data fusion method based on the Dempster-Shafer(DS)evidence theory is studied specifically for data generated by flow sensors.By designing an effective fusion model,this method reduces data redundancy,implement correlation analysis,and analyze the correlation between network security events from the dimensions of time,space and events,so as to form fused data with correlations,and thereby enhance the effectiveness of network security situation data.The proposed fusion model effectively extracts key information,enhances the validity of network security situation data,and provides strong support for network security regulation.Furthermore,it maintains a high level of effectiveness even in the presence of possible false positives or missed detections,so it demonstrates its significant practical application value and promotional significance.关键词
网络安全/多源数据融合/信息抽取/流量传感器/证据理论/态势感知Key words
network security/multi-source data fusion/information extraction/flow sensor/evidence theory/situational awareness分类
信息技术与安全科学引用本文复制引用
黄智勇,林仁明,刘宏,朱举异,李嘉坤..基于DS证据理论的多源网络安全数据融合模型[J].现代电子技术,2024,47(7):115-121,7.基金项目
四川省科技计划项目(2021YFS0391) (2021YFS0391)
四川省重大科技专项(22DZX0046) (22DZX0046)
国家自然科学基金重点项目(61133016) (61133016)
