Network Security Situation Evaluation Method Based on Attack Intention Recognition

被引:0
|
作者
Wang Kun [1 ]
Qiu Hui [1 ]
Yang Haopu [1 ]
Hou Di [2 ]
机构
[1] Zhengzhou Inst Informat Sci & Technol, Zhengzhou, Peoples R China
[2] Zhengzhou Univ, Zhengzhou, Peoples R China
关键词
multi-stage attack; situation evaluation; network security; intention recognition; causal analysis;
D O I
暂无
中图分类号
TP39 [计算机的应用];
学科分类号
081203 ; 0835 ;
摘要
This paper analyzed the existing network security situation evaluation methods and discovered that they can't accurately reflect the features of large-scale, synergetic, multi-stage gradually shown by network attack behaviors. For this purpose, under deep analyzing the association between attack intention and network configuration information, a network security situation evaluation method based on attack intention recognition was proposed. Unlike traditional method, the evaluation method was based on intruder. This method firstly made causal analysis of attack event and discovered intrusion path to recognize every attack stages, then realized situation evaluation based on the attack stages. Lastly the method recognized the attack intention of next stage to forecast network security situation based on achieved attack stages, combined with vulnerability and network connectivity. A simulation experiments for the proposed network security situation evaluation model is performed by network examples. The experimental results show that this method is more accurate on reflecting the truth of attack. And the method does not need training on the historical sequence, so the method is more effective on situation forecasting.
引用
收藏
页码:919 / 924
页数:6
相关论文
共 50 条
  • [1] A Network Security Situation Assessment Method Based On Attack Intention Perception
    Kou Guang
    Tang Guangming
    Ding Xia
    Wang Shuo
    Wang Kun
    [J]. 2016 2ND IEEE INTERNATIONAL CONFERENCE ON COMPUTER AND COMMUNICATIONS (ICCC), 2016, : 1138 - 1142
  • [2] Quantitative Method for Network Security Situation Based on Attack Prediction
    Hu, Hao
    Zhang, Hongqi
    Liu, Yuling
    Wang, Yongwei
    [J]. SECURITY AND COMMUNICATION NETWORKS, 2017,
  • [3] A LSTM-Based Method for Comprehension and Evaluation of Network Security Situation
    Li, Shixuan
    Zhao, Dongmei
    [J]. 2019 18TH IEEE INTERNATIONAL CONFERENCE ON TRUST, SECURITY AND PRIVACY IN COMPUTING AND COMMUNICATIONS/13TH IEEE INTERNATIONAL CONFERENCE ON BIG DATA SCIENCE AND ENGINEERING (TRUSTCOM/BIGDATASE 2019), 2019, : 723 - 728
  • [4] Researches on network security situation analysis based on attack states
    Lv, Huiying
    Cao, Yuanda
    Shi, Cuixia
    [J]. 2008 PROCEEDINGS OF INFORMATION TECHNOLOGY AND ENVIRONMENTAL SYSTEM SCIENCES: ITESS 2008, VOL 3, 2008, : 640 - 646
  • [5] Computer network security evaluation method based on improved attack graph
    Li, Zhaocui
    Liu, Huichuan
    Wu, Chunyan
    [J]. Journal of Cyber Security Technology, 2022, 6 (04) : 201 - 215
  • [6] Attack graph based evaluation of network security
    Kotenko, Igor
    Stepashkin, Mikhail
    [J]. COMMUNICATIONS AND MULTIMEDIA SECURITY, PROCEEDINGS, 2006, 4237 : 216 - 227
  • [7] A Novel Approach to Network Security Situation Assessment Based on Attack Confidence
    Liu, Donghang
    Dong, Lihua
    Lv, Shaoqing
    Dong, Ying
    He, Fannv
    Wu, Chensi
    Zhang, Yuqing
    Ma, Hua
    [J]. NETWORK AND SYSTEM SECURITY, 2017, 10394 : 450 - 463
  • [8] An Attack Intention Recognition Method Based on Evaluation Index System of Electric Power Information System
    Guan, Xiaojuan
    Ma, Yuanyuan
    Hua, Ye
    [J]. PROCEEDINGS OF 2017 IEEE 2ND INFORMATION TECHNOLOGY, NETWORKING, ELECTRONIC AND AUTOMATION CONTROL CONFERENCE (ITNEC), 2017, : 1544 - 1548
  • [9] Stealing complex network attack detection method considering security situation awareness
    Xi, Bo
    Liu, Huiying
    Hou, Botao
    Wang, Ying
    Guo, Yuling
    [J]. PLOS ONE, 2024, 19 (03):
  • [10] Network Security Situation Quantitative Evaluation Based on the Classification of Attacks in Attack-Defense Confrontation Environment
    Yao Shuping
    Gu Yingyan
    [J]. CCDC 2009: 21ST CHINESE CONTROL AND DECISION CONFERENCE, VOLS 1-6, PROCEEDINGS, 2009, : 6014 - +