期刊文献+

网络安全态势感知研究综述 被引量:105

Research survey of network security situation awareness
下载PDF
导出
摘要 网络安全态势感知(SA)的研究对于提高网络的监控能力、应急响应能力和预测网络安全的发展趋势具有重要的意义。基于态势感知的概念模型,详细阐述了态势感知的三个主要研究内容:网络安全态势要素提取、态势理解和态势预测,重点论述各研究点需解决的核心问题、主要算法以及各种算法的优缺点;最后对各研究点的相关理论及其应用实现的发展趋势进行了分析和展望。 The research of network security Situation Awareness(SA) is important in improving the abilities of network detection,response to emergency and predicting the network security trend.In this paper,based on the conceptual model of situational awareness,three main problems with regard to network security situational awareness were discussed: extraction of the elements in the network security situation,comprehension of the network security situation and projection of future situation.The core issues to be resolved,and major algorithms as well as the advantages and disadvantages of various algorithms were focused.Finally,the opening issues and challenges for network security situation awareness concerning both theory and implementation in near future were proposed.
出处 《计算机应用》 CSCD 北大核心 2012年第1期1-4,59,共5页 journal of Computer Applications
基金 国家自然科学基金资助项目(60703021) 国家863计划项目(2009AA01Z438 2009AA01Z431)
关键词 态势感知 网络安全 数据融合 态势预测 Situation Awareness(SA) network security data fusion situational prediction
  • 相关文献

参考文献42

  • 1ENDSLEY M R. Design and evaluation for situation awareness enhancement [C]// Proceeding of the 32nd Human Factors Society Annual Meeting. Santa Monica: Human Factors and Ergonomics Society, 1988:97 - 101.
  • 2BASS T, ARBOR A. Multisensor data fusion for next generation distributed intrusion detection systems [ C]// Proceeding of IRIS National Symposium on Sensor and Data Fusion. Laurel, MD: [ s. n.], 1999: 24-27.
  • 3JAJODIA S, NOEL S, O'BERRY B. Topological analysis of network attack vulnerability [ M]// KUMAR V, SRIVASTAVA J, LAZAREVIC A. Managing Cyber Threats: Issues, Approaches and Challenges. Dordrecht: Kluwer Academic Publisher, 2005:247-266.
  • 4WANG LINGYU, SINGHAL A, JAJODIA S. Measuring network security using attack graphs [ C ]// Proceedings of the 2007 ACM Workshop on Quality of Protection. New York: ACM Press, 2007: 49 - 54.
  • 5WANG LINGYU, SINGHAL A, JAJODIA S. Measuring the overall security of network configurations using attack graphs [C]// Proceedings of the 21 st 1FIP WG 11.3Working Conference on Data and Applications Security. Berlin: Springer-Verlag, 2007: 98- 112.
  • 6NING PENG, CUI YUN, REEVES D S, et al. Techniques and tools for analyzing intrusion alerts [J]. ACM Transactions on Information and System Security, 2004, 7(2): 274 -318.
  • 7XU DINGBANG, NING PENG. Alert correlation though trigger event and common resource [ C]// Proceedings of the 20th Annual Computer Security Applications Conference. Washington, DC: IEEE Computer Society, 2004:360 - 369.
  • 8BARFORD P, CHEN YAN, GOYAL A, et al. Employing honey- nets for network situational awareness [C]// Proceedings of the Fourth Workshop on Hot Topics in Networks. Berlin: Springer-Verlag, 2005: 71- 102.
  • 9THONNARD O, DACIER M. A framework for attack patterns' discovery in honeynet data [C]//Proceeding of the 8th Digital Forensics Research Conference. Baltimore: [ s. n. ], 2008:S128 - S139.
  • 10王娟,张凤荔,傅翀,陈丽莎.网络态势感知中的指标体系研究[J].计算机应用,2007,27(8):1907-1909. 被引量:55

二级参考文献50

共引文献574

同被引文献593

引证文献105

二级引证文献667

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部