| 基于日志审计与性能修正算法的网络安全态势评估模型 |
| |
| 引用本文: | 韦勇,连一峰.基于日志审计与性能修正算法的网络安全态势评估模型[J].计算机学报,2009,32(4). |
| |
| 作者姓名: | 韦勇 连一峰 |
| |
| 作者单位: | 1. 中国科学技术大学电子工程与信息科学系,合肥,230027;中国科学院软件研究所信息安全国家重点实验室,北京,100190
2. 中国科学院软件研究所信息安全国家重点实验室,北京,100190 |
| |
| 基金项目: | 国家八六三高技术研究发展计划项目 |
| |
| 摘 要: | 文章分析和比较了目前的安全态势评估方法,提出了一种基于日志审计与性能修正算法的网络安全态势评估模型.首先利用日志审计评估节点理论安全威胁,并通过性能修正算法计算节点安全态势.然后利用节点服务信息计算网络安全态势,并且采用多种预测模型对网络安全态势进行预测,绘制安全态势曲线图.最后构建了一个网络实例,使用网络仿真软件对文中提出的态势评估模型和算法进行了验证.实验证明该方法切实有效,比传统方浇法更准确地反映了网络的安全态势和发展趋势.
|
| 关 键 词: | 安全态势评估 日志审计 性能修正 安全态势曲线图 预测 |
A Network Security Situational Awareness Model Based on Log Audit and Performance Correction |
| |
| WEI Yong,LIAN Yi-Feng.A Network Security Situational Awareness Model Based on Log Audit and Performance Correction[J].Chinese Journal of Computers,2009,32(4). |
| |
| Authors: | WEI Yong LIAN Yi-Feng |
| |
| Affiliation: | Department of Electronic Engineering and Information Science;University of Science and Technology of China;Hefei 230027;State Key Laboratory of Information Security;Institute of Software;Chinese Academy of Sciences;Beijing 100190 |
| |
| Abstract: | This paper analyzes and compares the existing situational awareness methods and proposes a network security situational awareness model based on log audit and performance correction algorithm.First,nodes theoretic security threat is got by log audit and the value of nodes security situation is computed by performance correction algorithm.Then the value of network security situation is computed using service information,the future threat is predicted by several prediction models,and the Security Situational ... |
| |
| Keywords: | security situational awareness log audit performance correction security situational graph predict |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
