数码设计Issue(19):39-41,3.
基于知识图谱的网络安全事件检测与响应技术研究
Research on Network Security Event Detection and Response Technology Based on Knowledge Graph
摘要
Abstract
Aiming at the problems of weak correlation of multi-source heterogeneous data and difficulties in threat intelligence sharing faced by traditional network security event detection and response technology,a knowledge graph-based network security event detection and response framework is proposed.Through constructing a network security ontology model,deep learning methods are adopted to extract entities and relationships from network security data,thus realizing the construction of knowledge graph.The TransH algorithm is utilized for knowledge representation learning,and combined with the SOAR platform to achieve intelligent detection and response of network security events.Experiments show that this method achieves a detection accuracy of 92.3%in real network environments,with response time reduced by 43.7%,significantly improving the efficiency of network security event handling.关键词
知识图谱/网络安全/事件检测/智能响应/SOARKey words
knowledge graph/network security/event detection/intelligent response/SOAR分类
信息技术与安全科学引用本文复制引用
蔡豪,王珂,吕书林,季丰..基于知识图谱的网络安全事件检测与响应技术研究[J].数码设计,2024,(19):39-41,3.基金项目
1.本文系河南省哲学社会科学教育强省研究项目:信息茧房视角下大学生群体极化成因及破解路径研究(项目编号:2025JYQS1160) (项目编号:2025JYQS1160)
2.本文系河南省哲学社会科学教育强省研究项目:人工智能驱动下职业院校教师数字素养提升途径研究(项目编号:2025JYQS0594). (项目编号:2025JYQS0594)
