计算机技术与发展2024,Vol.34Issue(4):124-131,8.DOI:10.20165/j.cnki.ISSN1673-629X.2024.0019
因果图表征的网络攻击数据集构建
Network Attack Dataset Construction Using Causal Graph
摘要
Abstract
Advanced persistent threat attack has become the main form of network attack because of its multi-stage sustainable characteristics.Datasets are necessary for researches on the detection and prediction of this kind of attack.Real network and host data are superior when constructing datasets.However,few publicly available datasets can meet the requirements,due to the privacy and security issues.The available datasets often supply original network flows and system logs,but the absence of analysis on the long-term attack context results in that a straightforward using of deep neural networks to detect and predict malicious packets is not practical enough.In order to overcome these problems,a causal graph based network attack dataset is constructed and released,based on the real attack data of a network scene.Compared with the other datasets supplying original network flows and system logs simply,such dataset explores the causality of attach context deeply and can model the long-term advanced persistent threat attack.This makes the dataset more applicable for attack detection and prediction.The dataset is released at https://github.com/GuangmingZhu/CausalGraphAPTDataset.关键词
网络安全/因果图/高级可持续威胁攻击/攻击上下文Key words
network security/causal graph/advanced persistent threat attack/attack context分类
信息技术与安全科学引用本文复制引用
朱光明,冯家伟,卢梓杰,张向东,张锋军,牛作元,张亮..因果图表征的网络攻击数据集构建[J].计算机技术与发展,2024,34(4):124-131,8.基金项目
国家重点研发计划(2020YFF0304900) (2020YFF0304900)
