计算机工程

• 专栏 • 上一篇    下一篇

入侵检测系统中基于辐射状面板的可视化方法

张 胜1,2,施荣华1,周芳芳1   

  1. (1. 中南大学信息科学与工程学院,长沙 410083;2. 湖南商学院现代教育技术中心,长沙 410205)
  • 收稿日期:2013-08-14 出版日期:2014-01-15 发布日期:2014-01-13
  • 作者简介:张 胜(1975-),男,博士研究生、CCF会员,主研方向:网络信息安全;施荣华,教授、博士;周芳芳,副教授、博士
  • 基金项目:

    国家自然科学基金资助项目(61103108)

Visualization Method Based on Radial Panel in Intrusion Detection System

ZHANG Sheng   1,2, SHI Rong-hua   1, ZHOU Fang-fang   1   

  1. (1. School of Information Science and Engineering, Central South University, Changsha 410083, China; 2. Modern Educational Technology Center, Hunan University of Commerce, Changsha 410205, China)
  • Received:2013-08-14 Online:2014-01-15 Published:2014-01-13

摘要:

现代互联网络存在认知负担重、缺乏全局认知、交互性较差等安全问题。为此,利用可视化方法识别网络中的攻击和异常事件,并提出一种新型的入侵检测分析系统(IDS)——基于辐射状面板可视化技术的IDS View。根据现有可视化系统的不足,考虑用户接口与体验,采用颜色混合算法、多段拟合贝塞尔曲线算法、数据预处理及端口映射算法,降低图像的闭塞性,提高可扩展性及增强入侵识别与态势感知能力。应用结果表明,应用该方法分析人员可以直观地从宏观和微观2个层面感知网络安全状态,有效地识别网络攻击,辅助分析人员决策。

关键词: 网络安全可视化, 入侵检测系统, 辐射状面板, 多段拟合贝塞尔曲线, 端口映射, 网络安全态势评估

Abstract:

There are some security problem of cognition difficulty, lack of global cognition and interaction in modern Internet security. How to identify network attacks and abnormal events in a quicker and more effective way is a key and eternal topic. The visualization method, a possible and valuable solution, is proposed. Considering the features and defeats of current working visualization systems, this paper researches and constructs a new type of Intrusion Detection System(IDS)——IDS View, a system based on radial panel visualization technology. With a main focus on user interface and experience, decrease of image occlusion, color mixing algorithms, curve algorithms and port mapping algorithms, this system can well be applied to the campus network security situation assessment. Application results show that analysts can intuitively be aware of the network security status from both macro and micro levels, so it can effectively identify network attacks and assist them in decision-making.

Key words: network security visualization, Intrusion Detection System(IDS), radial panel, multi-segment fitting Bezier curve, port mapping, network security situation assessment

中图分类号: