通信学报2025,Vol.46Issue(3):45-61,17.DOI:10.11959/j.issn.1000-436x.2025037
面向未知网络威胁的网络要地自适应防御模型
Adaptive defense model for critical assets against unknown network threats
摘要
Abstract
To address the stealthy and penetrative characteristics of unknown network threats,a novel adaptive defense model based on mimic defense theory was proposed.The model introduced a mimic disguise mechanism and proposed a dynamic reconstruction strategy using subnet camouflage.By dynamically adjusting subnet topologies,it disrupted at-tack path and protected critical assets.The model included input proxy,reconfigurable subnet,scheduling control layer,and policy decision layer.The input proxy forwarded traffic to reconfigurable subnet.A reinforcement learning-based de-cision model in the policy decision layer perceived reconfigurable subnet states to generate defense strategies.Subnet connections were dynamically adjusted by the scheduling control layer to adaptively interfere with attack paths and pre-vent unknown threat diffusion.Experiments show that the proposed model achieves higher success rate in blocking un-known threats within limited steps compared to existing methods.关键词
未知威胁/动态异构冗余/强化学习/拟态防御/自适应防御Key words
unknown threat/dynamic heterogeneous redundancy/reinforcement learning/mimic defense/adaptive defense分类
信息技术与安全科学引用本文复制引用
郝宵荣,刘波,周鼎,曹玖新,张进..面向未知网络威胁的网络要地自适应防御模型[J].通信学报,2025,46(3):45-61,17.基金项目
国家重点研发计划基金资助项目(No.2022YFB3104300) (No.2022YFB3104300)
国家自然科学基金资助项目(No.62472092,No.62172089) (No.62472092,No.62172089)
江苏省网络与信息安全重点实验室基金资助项目(No.BM2003201) (No.BM2003201)
教育部计算机网络与信息集成重点实验室基金资助项目(No.93K-9) The National Key Research and Development Program of China(No.2022YFB3104300),The National Natural Science Foundation of China(No.62472092,No.62172089),The Jiangsu Provincial Key Laboratory of Network and Information Se-curity(No.BM2003201),The Key Laboratory of Computer Network and Information Integration of Ministry of Education of China(No.93K-9) (No.93K-9)
