摘要
本文针对中国2011年到2015年的月度安全数据展开研究,研究发现飞客蠕虫、仿冒域名和高危漏洞与网络安全事件数量显著相关。通过信息熵和互信息的度量,僵尸病毒的熵值经历了先升的过程,在2014年发生了明显的下降,飞客蠕虫处于下降状态,高危漏洞则在2015年出现了激增的情况,成为重要的安全隐患。安全处理事件数量与僵尸病毒、飞客蠕虫、高危漏洞的熵值在2015年出现了较大的变化,网络安全系统的混乱程度在剧增。通过互信息可以发现2015年我国网络安全出现了新的变化趋势,除了关注传统的僵尸病毒、飞客蠕虫和高危漏洞之外,还需要更加关注后门植入网站和网站被篡改等情况。
This paper makes a research based on the monthly security data of China from 2011 to 2015, finding that Conficker, piracy domain name and high - risk vulnerability were apparently related to the number of network security events. According to the measurement of information entropy and mutual information, the entropy value of Zombie virus rose at first and then declined obviously in 2014, Conficker was on the declining status while high - risk vulnerability increased dramatically in 2015, which became the major security loophole. The number of security disposal events and the entropy value of zombie virus, Conficker and high -risk vulnerability changed greatly in 2015 and the network security system was becoming increasingly chaotic. It can be found that our network security witnessed a new changing trend in 2015 through mutual information: in addition to traditional zombie virus, Conficker and high - risk vulnerabilities ,we should pay more attention to backdoor implantation websites and website defacement.
出处
《学术探索》
CSSCI
北大核心
2016年第9期66-72,共7页
Academic Exploration
关键词
网络安全
信息熵
互信息
network security
information entropy
mutual information
