面向网络空间安全情报的知识图谱综述

随着网络空间安全情报在网络犯罪、网络战和网络反恐等领域的作用日益凸显，迫切需要对网络空间安全情报的基本理论和综合分析方法进行深入研究。当前，安全情报在实际应用中主要面临着数据类型多样、分布离散、内容不一致等问题，因此引入知识图谱技术框架，旨在利用知识图谱面向海量数据时信息收集及加工整合的思想，提高安全情报的收集效率、情报质量，同时拓展情报的使用范围。本文首先简要回顾安全情报和知识图谱的研究现状，同时介绍知识图谱在安全领域的应用。其次给出面向安全情报的知识图谱构建框架。然后介绍安全情报知识图谱构建的关键技术，包括信息抽取、本体构建和知识推理等。最后，对安全情报知识图谱发展面临的问题进行了讨论。

Knowledge Graph for Cyberspace Security Intelligence: A Survey

With the increasingly prominent application and role of cyberspace security intelligence in cybercrime, cyberwarfare, and network counter-terrorism, it''s urgent to intensive study the basic theories and effective extraction methods of cyberspace security intelligence. At present, security intelligence mainly faces the problems of diverse data types, discrete distribution, and inconsistent content. Therefore, the knowledge graph technology framework is introduced to improve the security intelligence, which aims at using the knowledge graph to solve the problem of the information collection and processing integration of massive data, improving the collection efficiency and intelligence quality of security intelligence. This paper first briefly reviews the research status of security intelligence and knowledge graph, and shows the application cases of the knowledge graph of security intelligence in intelligence analysis. Second, it summarizes the framework for building a knowledge graph of security intelligence. Then, it introduces the key technologies for the construction of security knowledge graph, including information extraction, ontology construction and knowledge reasoning. Finally, the issues facing the development of security intelligence knowledge maps are discussed.