摘要
网络安全态势感知是实现网络安全监测和预警的一种新技术,融合防火墙、防病毒软件、入侵监测系统(IDS)、安全审计系统等安全措施的数据信息,对整个网络的当前状况进行评估,对未来的变化趋势进行预测。深入分析国内外相关研究后,建立了一个网络安全态势感知概念模型和体系结构,分析研究构成网络安全态势感知系统的数据的特征提取、网络安全评估、网络应急响应、网络安全预警等重要组成部分,这将为下一步安全态势感知系统的实现奠定理论的基础。
Network situation awareness is a kind of new technology in network security system,which syncretize the information of firewall,anti-virus software,Intrusion Detecting System (IDS) and security audit system,and evaluate the currently status of whole network.After thoroughly analyzing the relative research in and abroad,a conception model of network security situation apperceiving is presented.In the paper we analyze the main element such as the feature selecting,network security assessment,network emergency response and network security warning in advance,which establishes the academic base for the realizing of Network Situation Awareness System(NSAS).
出处
《计算机工程与应用》
CSCD
北大核心
2008年第1期100-102,147,共4页
Computer Engineering and Applications
基金
国家自然科学基金(the National Natural Science Foundation of China under Grant No.60603029)
江苏省自然科学基金(the Natural Sci-ence Foundation of Jiangsu Province of China under Grant No.BK2005009)。
关键词
网络态势感知
安全评估
安全预警
network situation awareness
security assessment
security warning
