摘要： 针对局域网中存在的安全风险和统一威胁管理瓶颈问题，提出一种局域网安全态势感知系统，给出其体系结构，采用DEMATEL方法获取主要安全指标，利用模糊综合评价算法建立态势评估模型，在此基础上构建威胁评估模型，计算局域网的威胁程度。仿真结果证明，该系统能准确分析局域网的安全态势，增强网络安全性。

关键词: 态势感知, DEMATEL方法, 模糊综合评价, 统一威胁管理, 马尔可夫预测模型

Abstract: This paper proposes the research of the security situational awareness system, aiming at solving the risk existed in the LAN and the bottleneck problem of United Threat Management(UTM). For the first time, it brings forward security situational awareness system architecture in the LAN combining UTM. The main security index is acquired through the DEMATEL method and the situational measurement model is built by adopting the fuzzy comprehensive evaluation algorithm. The threat measurement model is constructed to compute the threat degree in the LAN based on the security index and situational measurement model. The result proves that the system can analyze the security situation accurately and make the UTM strengthen the network security.

Key words: situational awareness, DEMATEL method, fuzzy comprehensive evaluation, United Threat Management(UTM), Markov prediction model

中图分类号: 

• TP309