A Novel Approach to Network Security Situation Assessment Based on Attack Confidence

被引：4

作者：

Liu, Donghang ^{[1
,2
]}

Dong, Lihua ^{[1
]}

Lv, Shaoqing ^{[3
]}

Dong, Ying ^{[2
]}

He, Fannv ^{[2
]}

Wu, Chensi ^{[2
]}

Zhang, Yuqing ^{[2
]}

Ma, Hua ^{[4
]}

机构：

[1] Xidian Univ, State Key Lab Integrated Serv Network, Xian, Shaanxi, Peoples R China

[2] Univ Chinese Acad Sci, Natl Comp Network Intrus Protect Ctr, Beijing, Peoples R China

[3] Xian Univ Posts & Telecommun, Shaanxi Key Lab Informat Commun Network & Secur, Xian, Shaanxi, Peoples R China

[4] Chinese Acad Sci, Inst Informat Engn, State Key Lab Informat Secur, Beijing, Peoples R China

来源：

NETWORK AND SYSTEM SECURITY | 2017年 / 10394卷

基金：

中国国家自然科学基金; 国家重点研发计划;

关键词：

Network security situation assessment; Attack confidence; Ensemble learning; D-S evidence theory; Information fusion;

D O I：

10.1007/978-3-319-64701-2_33

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

As an active topic in the research field, network security situation assessment can reflect the security situation from a global perspective. However, existing assessment approaches rely on detection threshold to make decisions, leading to massive false positives and false negatives. This paper proposes a confidence-based network security situation assessment approach that preserves the probability information in attack detection. We use the ensemble learning algorithm and D-S evidence theory to obtain the attack confidence, and calculate the network security situation value through the situation elements fusion. Experiment results demonstrate that this approach is effective and accurate.

引用

页码：450 / 463

页数：14

共 50 条

[31] Network Situation Assessment Method Based on Improved BP Neural Network
Du, Zhiqiang
Yao, Haitao
Fu, Yanfang
Cao, Zijian
Liang, Hongtao
Ren, Jinkang
ELECTRONICS, 2023, 12 (03)
[32] A Study on Network Security Situation Evaluation Model
Abasi
MECHATRONICS ENGINEERING, COMPUTING AND INFORMATION TECHNOLOGY, 2014, 556-562 : 5312 - 5315
[33] Research on Network Security Situation Awareness Based on the LSTM-DT Model
Zhang, Haofang
Kang, Chunying
Xiao, Yao
SENSORS, 2021, 21 (14)
[34] Situation evaluate on hierarchical network security based on D-S evidence theory
Zhang, Yu, 1600, Inderscience Enterprises Ltd., 29, route de Pre-Bois, Case Postale 856, CH-1215 Geneva 15, CH-1215, Switzerland (13): : 245 - 256
[35] A Network Security Situation Awareness Method Based on Multi-source Information Fusion
Gao, Yue
Zhang, Shuying
PROCEEDINGS OF THE 2ND INTERNATIONAL FORUM ON MANAGEMENT, EDUCATION AND INFORMATION TECHNOLOGY APPLICATION (IFMEITA 2017), 2017, 130 : 273 - 276
[36] Situation evaluate on hierarchical network security based on D-S evidence theory
Wang, Chundong
Zhang, Yu
INTERNATIONAL JOURNAL OF COMMUNICATION NETWORKS AND DISTRIBUTED SYSTEMS, 2014, 13 (3-4) : 245 - 256
[37] Constructing general cube to be aware of network security situation
Wen, Zhicheng
Chen, Zhigang
Beijing Hangkong Hangtian Daxue Xuebao/Journal of Beijing University of Aeronautics and Astronautics, 2015, 41 (10): : 1966 - 1974
[38] REFACING: An autonomic approach to network security based on multidimensional trustworthiness
Oliviero, F.
Peluso, L.
Romano, S. P.
COMPUTER NETWORKS, 2008, 52 (14) : 2745 - 2763
[39] Algorithm for the assessment of ship situation based on the parameter adaptive dynamic Bayesian network
Bi C.
Wang L.
Liu Y.
Xi'an Dianzi Keji Daxue Xuebao/Journal of Xidian University, 2019, 46 (02): : 158 - 163
[40] Situation Assessment of Air Traffic Based on Complex Network Theory and Ensemble Learning
Liu, Fei
Li, Jiawei
Wen, Xiangxi
Wang, Yu
Tong, Rongjia
Liu, Shubin
Chen, Daxiong
APPLIED SCIENCES-BASEL, 2023, 13 (21):

← 1 2 3 4 5 →