摘要
网络安全态势感知(SA)的研究对于提高网络的监控能力、应急响应能力和预测网络安全的发展趋势具有重要的意义。基于态势感知的概念模型,详细阐述了态势感知的三个主要研究内容:网络安全态势要素提取、态势理解和态势预测,重点论述各研究点需解决的核心问题、主要算法以及各种算法的优缺点;最后对各研究点的相关理论及其应用实现的发展趋势进行了分析和展望。
The research of network security Situation Awareness(SA) is important in improving the abilities of network detection,response to emergency and predicting the network security trend.In this paper,based on the conceptual model of situational awareness,three main problems with regard to network security situational awareness were discussed: extraction of the elements in the network security situation,comprehension of the network security situation and projection of future situation.The core issues to be resolved,and major algorithms as well as the advantages and disadvantages of various algorithms were focused.Finally,the opening issues and challenges for network security situation awareness concerning both theory and implementation in near future were proposed.
出处
《计算机应用》
CSCD
北大核心
2012年第1期1-4,59,共5页
journal of Computer Applications
基金
国家自然科学基金资助项目(60703021)
国家863计划项目(2009AA01Z438
2009AA01Z431)
关键词
态势感知
网络安全
数据融合
态势预测
Situation Awareness(SA)
network security
data fusion
situational prediction