An evaluation method of network security situation using data fusion theory

被引：2

作者：

Zhao Z. ^{[1
]}

Peng Y. ^{[2
]}

Huang J. ^{[2
]}

Zhou T. ^{[3
]}

Wang H. ^{[2
]}

机构：

[1] School of Special Education of Changchun University, 6543 Weixing Road, Changchun

[2] Guangxi University of Science and Technology, 268 Avenue Donghuan, Liuzhou

[3] Affiliated Hospital of Changchun University of Chinese Medicine, 1478 Gongneng Road, Changchun

来源：

International Journal of Performability Engineering | 2020年 / 16卷 / 07期

关键词：

Data fusion; Security events; Situation awareness;

D O I：

10.23940/ijpe.20.07.p7.10461057

中图分类号：

学科分类号：

摘要：

Network security situation awareness can effectively grasp the macro-security situation of the network, but the evaluation process still face problems such as single data source and big accuracy deviation. Therefore, this paper proposes a network security situation awareness model and method based on D-S theory. Using PCA clustering, the model preprocesses alarm information and eliminates useless alarm information to reduce time costs in evaluation. Based on improved D-S evidence theory, multi-source alarm data fusion rules are established to improve accuracy in event detection. Three situation awareness indicators of vulnerability, threat, and asset importance are set up to quantify the situation indicators and form an intuitive situation display. The experimental comparison analysis indicates that the model proposed herein can accurately assess the network security situation. © 2020 Totem Publisher, Inc. All rights reserved.

引用

页码：1046 / 1057

页数：11

共 50 条

[11] Application of machine learning algorithm and data evaluation in computer network security situation awareness technology
Zhang, Xuxia
Chen, Weijie
Wang, Jian
Fang, Rang
[J]. Intelligent Decision Technologies, 2024, 18 (04) : 2827 - 2839
[12] Antibody Concentration Based Method for Network Security Situation Awareness
Sun, Feixian
Xu, Feng
[J]. 2009 3RD INTERNATIONAL CONFERENCE ON BIOINFORMATICS AND BIOMEDICAL ENGINEERING, VOLS 1-11, 2009, : 130 - 133
[13] Network security management based on data fusion technology
Niu Yi
Zheng Qi-Lun
Peng Hong
[J]. 7TH INTERNATIONAL CONFERENCE ON COMPUTER-AIDED INDUSTRIAL DESIGN & CONCEPTUAL DESIGN, 2006, : 889 - 892
[14] Situation Awareness Data Fusion Method Based on Library Events
Xi, Haixu
Gao, Wei
Park, Gyun Yeol
[J]. COMPUTER SYSTEMS SCIENCE AND ENGINEERING, 2022, 42 (03): : 1047 - 1061
[15] A Method of Improved Support Vector Machine for Network Security Situation Forecasting
Li, Yuancheng
Jing, Jingtao
[J]. SPORTS MATERIALS, MODELLING AND SIMULATION, 2011, 187 : 291 - 296
[16] The mechanism of situation data fusion based on trust in wireless sensor network
Li, Fang-Wei
Nie, Yi-Fang
Liu, Fan
Zhu, Jiang
[J]. Beijing Youdian Daxue Xuebao/Journal of Beijing University of Posts and Telecommunications, 2015, 38 (05): : 71 - 76
[17] A Quantitative Model for Network Security Situation Awareness Based on Immunity and Grey Theory
Shi, Yuanquan
Li, Tao
Chen, Wen
Zhang, Ruirui
[J]. 2009 ISECS INTERNATIONAL COLLOQUIUM ON COMPUTING, COMMUNICATION, CONTROL, AND MANAGEMENT, VOL IV, 2009, : 14 - 18
[18] A new approach for network security situation prediction based on the immune optimization theory
Shi, Yuanquan
Liu, Xiaojie
Li, Tao
Peng, Xiaoning
Chen, Wen
Zhang, Ruirui
[J]. Gaojishu Tongxin/Chinese High Technology Letters, 2012, 22 (01): : 20 - 27
[19] Survey of Network Security Situation Awareness
He, Changlin
Li, Yufen
[J]. PROCEEDINGS OF THE 2017 INTERNATIONAL CONFERENCE ON COMPUTATIONAL SCIENCE AND ENGINEERING (ICCSE 2017), 2017, 81 : 136 - 141
[20] Heterogeneous multi-sensor data fusion with multi-class support vector machines: creating network security situation awareness
Liu, Xiao-Wu
Wang, Hui-Qiang
Liang, Ying
Lai, Ji-Bao
[J]. PROCEEDINGS OF 2007 INTERNATIONAL CONFERENCE ON MACHINE LEARNING AND CYBERNETICS, VOLS 1-7, 2007, : 2689 - 2694

← 1 2 3 4 5 →