基于多传感信息融合的网络安全态势感知方法
A Network Security Situation Awareness Method Based on Multi sensor Information Fusion
高长忠 1杨振勇 1雷继东 1马洪涛 1王子敏1
作者信息
- 1. 中国石化集团共享服务有限公司东营分公司,山东东营 257099
- 折叠
摘要
现行方法在网络安全态势感知中应用效果不佳,RMSE和FAR比较高,无法达到预期的感知效果,针对现行方法存在的不足和缺陷,提出基于多传感信息融合的网络安全态势感知方法.从主机、攻击以及共有三个方面选择安全态势要素,建立网络安全态势要素指标体系,利用多个无线传感器感知网络安全数据,并对其预处理,通过多传感信息融合实现对网络安全态势量化,完成多传感信息融合的网络安全态势感知.经实验证明,本文方法RMSE小于0.1,FAR在1%以内,可以实现对网络安全态势精准感知.
Abstract
The current methods have poor application effects in network security situational awareness,with high RMSE and FAR,which cannot achieve the expected perception effect.To address the shortcomings and deficiencies of the current methods,a network security situational awareness method based on multi-sensor information fusion is proposed.Select security situation elements from three aspects:host,attack,and common,establish a network security situation element index system,use multiple wireless sensors to perceive network security data,preprocess it,and quantify the network security situation through multi-sensor information fusion,completing the network security situation perception of multi-sensor information fusion.Experimental results have shown that the RMSE of this method is less than 0.1 and the FAR is within 1%,which can achieve accurate perception of network security situations.
关键词
多传感信息融合/安全态势/感知/指标体系/量化Key words
multi-sensor information fusion/security situation/perception/indicator system/quantification引用本文复制引用
出版年
2024
国家科技期刊平台
NSTL
万方数据