基于行为可信的多级网络访问安全控制方法
A Multi-Level Network Access Security Control Method Based on Behavior Trust
王强 1周金宇 2金超武3
作者信息
- 1. 金陵科技学院信息化建设与管理中心,江苏 南京 211169
- 2. 金陵科技学院机电学院,江苏 南京 211169
- 3. 南京航空航天大学机电学院,江苏 南京 210016
- 折叠
摘要
为了提升网络安全等级,确保不同安全等级的信息仅能被有权限的用户获取,提出基于行为可信的多级网络访问安全控制方法.通过入侵检测平台、流量分析工具等渠道采集用户行为证据,将采集到的数据按照历史行为、直接行为和间接行为建立特征认证集合;为便于分析,统一数据量纲;从数据价值、脆弱性和威胁行为等方面分析风险因素,计算用户行为风险值;将计算结果和行为信任度相结合,全面评估行为可信度;利用k-means聚类算法建立初始样本矩阵,确定聚类中心,完成用户行为可信度多级划分;设置具有决策、执行和等级划分等模块的访问安全控制器,根据聚类结果,控制器会作出对应决策,实现网络访问安全控制.实验结果表明,所提方法能够准确评估用户的行为可信度,提高控制效果,增强网络安全性.
Abstract
In order to improve the network security level and ensure that information of different security levels can only be obtained by authorized users,a multi-level network access security control method based on behavioral trust is proposed.Collect user behavior evidence through intrusion detection platforms,traffic analysis tools and other channels,and establish feature authentication sets based on historical behaviors,direct behaviors and indirect behaviors for the collected data;unify data dimensions for easy analysis;Threat behavior and other aspects to analyze risk factors,calculate user behavior risk value;Combine the calculation results with behavioral trustworthiness to com-prehensively evaluate the behavioral trustworthiness;use the k-means clustering algorithm to establish an initial sam-ple matrix,determine the cluster center,and complete the multi-level division of user behavioral trustworthiness;The access security controller of modules such as level division,according to the clustering results,the controller will make corresponding decisions to realize network access security control.The experimental results show that the method can accurately evaluate the user's behavior credibility,improve the control effect,and enhance the network security.
关键词
行为可信/多级网络/访问安全控制/聚类算法/控制器Key words
Behavior trust/Multi-level network/Access security control/Clustering algorithm/Controller引用本文复制引用
基金项目
国家自然科学基金(面上项目)(2021)(52075232)
出版年
2024
NETL
NSTL
万方数据