摘要
通过对网络安全态势相关概念语义关系的分析,构建出网络安全态势的指标体系。在此基础上,利用本体工程技术,从顶级本体、领域本体、任务与行为层本体及应用层本体等四个层次,建立知识库模型。最后,对网络场景进行了形式化定义,通过网络场景来描述网络安全态势知识库中的具体实例,并分析了网络流量数据序列中的一个异常场景。
Research on network security situational knowledge base is the basis and emphasis of research on network security situation awareness. Through the analysis of the semantic relations between concepts related to network security situation, an index system of network security situation was constructed. On this basis, a knowledge base model was formed by ontology engineering technology, from the four levels: top ontology, domain ontology, task and behavior ontology and application ontology. Finally, the network scenario was formally defined to describe the specific examples of network security situational knowledge base entity, as well as analyze an abnormal scene in network traffic time series data.
出处
《计算机应用》
CSCD
北大核心
2014年第A02期95-98,107,共5页
journal of Computer Applications
基金
广东省教育部产学研结合项目(2009B090300326)
华南师范大学研究生科研创新基金资助项目
关键词
本体
网络安全
态势
知识库
网络场景
ontology
network security
situation
knowledge base
network section
