Enterprise LAN Security Situation Awareness Method Based on Data Mining
In order to improve the security and stability of enterprise LAN operation,and accurately perceive and deal with potential network threats,research on enterprise LAN security situation awareness method based on data mining is carried out.First,the enterprise LAN security data is collected and preprocessed.Then,by using data mining algorithm,we design association rule mining to extract network situation characteristics from security data.Finally,the situation assessment model is constructed to calculate the basic index of the enterprise LAN security situation,perceptively evaluate the current situation of the enterprise LAN,analyze possible threat sources,determine the threat level and corresponding threat degree,and realize the security situation awareness.The experimental results show that after the application of this method,the perceived false positive rate is less than 0.5%,and the potential security threats can be accurately identified,so as to improve the network security protection ability of enterprises.
data miningenterpriselocal area networksecure situation awareness
NETL
NSTL
万方数据
