摘要
传统方法在检测网络漏洞时,过程较为复杂,且检测存在局限性、精准度低的问题,设计基于网络态势数据挖掘的漏洞检测系统。通过分析数据准备、挖掘与评估展示三个步骤对风险数据做聚类处理,为漏洞数据的挖掘提供帮助,减少运算量,并针对聚类结果采用关联挖掘方法做聚类跟踪,明确漏洞范围;分析检测系统特点,设计系统的总体结构框架,建立检测数据库;分别从静态模块、漏洞扫描与页面展示模块三方面实现漏洞检测系统的设计。仿真实验结果表明,该系统实现了高检测效率、低错误率的漏洞自动化检测,为解决各类网络安全问题奠定了基础。
Since the traditional methods are limited and inaccurate,and has a complex process in detecting network vulnerabilities,a vulnerability detection system based on network situation data mining is designed.In the design,the cluster processing for risk data is carried out by analyzing the three steps of data preparation,data mining and evaluation to provide help for the mining of vulnerability data and reduce the computation burden for the vulnerability data.Moreover,the association mining method is adopted to implement cluster tracking according to the clustering results,so as to define the scope of the vulnerability.The characteristics of the detection system are analyzed.The overall framework of the system is designed.The detection database is established.The design of the vulnerability detection system is realized in the aspects of static module,vulnerability scanning module and page display module.The simulation results show that the proposed system can realize the automatic vulnerability detection with high detection efficiency and low error rate,which lays a foundation for solving various network security problems.
作者
王丹
杜芳芳
WANG Dan;DU Fangfang(School of Intelligent Engineering,Huanghe Jiaotong University,Jiaozuo 454950,China)
出处
《现代电子技术》
2021年第7期106-110,共5页
Modern Electronics Technique
基金
2019年度河南省高等学校青年骨干教师培养计划:大数据环境下的应用型本科在线课程教育平台研究(2019286)
黄河交通学院:计算机科学与技术重点学科(201902)
焦作市工程技术中心科研项目:焦作市面向现代物流服务的RFID工程技术研究中心(201834)。
关键词
漏洞检测系统
网络态势
数据挖掘
系统设计
聚类跟踪
漏洞范围
vulnerability detection system
network situation
data mining
system design
cluster tracking
vulnerability scope
