摘要
随着信息化的不断发展,政府、军队、企业等相关信息网络的规模逐渐扩大,重要性日益增加,网络空间面临新的安全挑战。传统安全防御体系能够有效地检测已知的网络威胁,但无法抵御以高级可持续威胁为代表的新型网络攻击。文章阐述了网络安全态势感知的研究现状及自适应安全体系,并给出了自适应的网络安全态势感知的应用模型和系统设计方案。
With the continuous development of informatization, the scale and importance of information networks in government, military, enterprise are gradually expanding, and cyberspace is facing new security challenges. Traditional network security defense system can effectively detect known threats, but it cannot resist unknown network attacks represented by Advanced Persistent Threat(APT). This paper describes the research status of Cybersecurity Situation Awareness(CSA) and the Adaptive Security Architecture(ASA), and gives the design scheme of Adaptive Cybersecurity Situation Awareness system.
作者
祁骏
相银堂
许锦程
郭乔进
Qi Jun;Xiang Yintang;Xujincheng;Guo Qiaojin(The 28th Research Institute of China Electronics Technology Group Corporation,Nanjing 210007,China)
出处
《信息化研究》
2020年第6期28-33,共6页
INFORMATIZATION RESEARCH
关键词
态势感知
自适应安全体系
网络安全
网络威胁
APT
situation awareness
Adaptive Security Architecture
cybersecurity
network threat
Advanced Persistent Threat
