Improvement of ATT&CK Model Based on Agglomerative Hierarchical Clustering Algorithm
In the process of applying the ATT&CK model(network attack model)to network security threat analysis,the tech-nology set provided by the ATT&CK model is too complicated.In view of the complexity of the ATT&CK model's application,this paper conducts a clustering study on the model's technology set for simplification,and proposes a model improvement method based on the clustering algorithm.First,the ATT&CK model's technology set is quantified and the clustering trend assessment is per-formed,and then agglomerated hierarchical clustering algorithm is applied to the data to obtain simplified clustering results,and fi-nally the effectiveness of the model improvement is verified through experiments.
国家科技期刊平台
NSTL
万方数据
