Author Login Editor-in-Chief Peer Review Editor Work Office Work

Computer Engineering ›› 2020, Vol. 46 ›› Issue (6): 130-135. doi: 10.19678/j.issn.1000-3428.0055219

• Cyberspace Security • Previous Articles     Next Articles

Network Security Situation Awareness Model Based on Bayesian Method

DING Huadong, XU Huahu, DUAN Ran, CHEN Fan   

  1. School of Computer Engineering and Science, Shanghai University, Shanghai 200444, China
  • Received:2019-06-17 Revised:2019-08-20 Published:2019-09-04

基于贝叶斯方法的网络安全态势感知模型

丁华东, 许华虎, 段然, 陈帆   

  1. 上海大学 计算机工程与科学学院, 上海 200444
  • 作者简介:丁华东(1996-),男,硕士研究生,主研方向为网络安全、大数据处理;许华虎,教授、博士生导师;段然、陈帆,硕士研究生。
  • 基金资助:
    赛尔网络下一代互联网技术创新项目“基于IPv6的智慧校园设备管理与可视化平台”(NGII20180617)。

Abstract: To comprehensively and accurately analyze the security situation of a given network and evaluate the situation,this paper proposes a mixed Network Security Situation Awareness(NASS) model based on Bayesian method.The model preprocesses the situation indicator data collected from a given network environment by discretizing them.Then according to the different evaluation methods,the hierarchical model of situation indicators is established.Finally,the situation influence indicators at the bottom layer of the hierarchical model are merged upward layer by layer by using the Bayesian network model,and the final evaluation index of network security situation is obtained to give the status rating.Experimental results show that the proposed model meets the practical requirements of applications,and the evaluation results are accurate and effective,improving the stability and reliability of network environment.

Key words: Network Security Situation Awareness(NSSA), situation indicator, Bayesian network, hierarchical model, data fusion

摘要: 为全面、准确地分析既定网络的安全态势并给出态势等级评定,提出一种基于贝叶斯方法的网络安全态势感知混合模型。对既定网络环境中收集到的态势指标数据进行离散化预处理,利用不同的评价方法建立相应的态势指标分级模型,并将分级模型底层的态势影响指标通过贝叶斯网络模型逐层向上融合至态势层,得到最终评价指标进行网络态势评定。实验结果表明,该模型满足实际应用要求,评估结果准确、有效,能够提高网络环境的稳定性和可靠性。

关键词: 网络安全态势感知, 态势指标, 贝叶斯网络, 分级模型, 数据融合

CLC Number: