A Novel Approach to Network Security Situation Assessment Based on Attack Confidence

被引：3

作者：

Liu, Donghang ^{[1
,2
]}

Dong, Lihua ^{[1
]}

Lv, Shaoqing ^{[3
]}

Dong, Ying ^{[2
]}

He, Fannv ^{[2
]}

Wu, Chensi ^{[2
]}

Zhang, Yuqing ^{[2
]}

Ma, Hua ^{[4
]}

机构：

[1] Xidian Univ, State Key Lab Integrated Serv Network, Xian, Shaanxi, Peoples R China

[2] Univ Chinese Acad Sci, Natl Comp Network Intrus Protect Ctr, Beijing, Peoples R China

[3] Xian Univ Posts & Telecommun, Shaanxi Key Lab Informat Commun Network & Secur, Xian, Shaanxi, Peoples R China

[4] Chinese Acad Sci, Inst Informat Engn, State Key Lab Informat Secur, Beijing, Peoples R China

来源：

NETWORK AND SYSTEM SECURITY | 2017年 / 10394卷

基金：

国家重点研发计划; 中国国家自然科学基金;

关键词：

Network security situation assessment; Attack confidence; Ensemble learning; D-S evidence theory; Information fusion;

D O I：

10.1007/978-3-319-64701-2_33

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

As an active topic in the research field, network security situation assessment can reflect the security situation from a global perspective. However, existing assessment approaches rely on detection threshold to make decisions, leading to massive false positives and false negatives. This paper proposes a confidence-based network security situation assessment approach that preserves the probability information in attack detection. We use the ensemble learning algorithm and D-S evidence theory to obtain the attack confidence, and calculate the network security situation value through the situation elements fusion. Experiment results demonstrate that this approach is effective and accurate.

引用

页码：450 / 463

页数：14

共 50 条

[31] A network security situation assessment method based on fusion model
Yu, Yunhao
[J]. DISCOVER APPLIED SCIENCES, 2024, 6 (03)
[32] NSAPs: A novel scheme for network security state assessment and attack prediction
Zhan, Mengqi
Li, Yang
Yang, Xinghua
Cui, Wenjing
Fan, Yulin
[J]. COMPUTERS & SECURITY, 2020, 99
[33] An Approach for Internal Network Security Metric Based on Attack Probability
Shan, Chun
Jiang, Benfu
Xue, Jingfeng
Guan, Fang
Xiao, Na
[J]. SECURITY AND COMMUNICATION NETWORKS, 2018,
[34] An approach to evaluate network security risk based on attack graph
Hu, Xiaoyun
Yu, Yang
Xia, Chunhe
[J]. PROCEEDINGS OF THE 2016 4TH INTERNATIONAL CONFERENCE ON ELECTRICAL & ELECTRONICS ENGINEERING AND COMPUTER SCIENCE (ICEEECS 2016), 2016, 50 : 1235 - 1238
[35] A BIPMU-based network security situation assessment method for wireless network
Liu, Ziyi
Yang, Changsong
Liu, Yueling
Ding, Yong
[J]. COMPUTER STANDARDS & INTERFACES, 2023, 83
[36] A novel approach to cyberspace security situation based on the vulnerabilities analysis
Hu, Wei
Li, Hanhua
Shi, Hanjun
[J]. WCICA 2006: SIXTH WORLD CONGRESS ON INTELLIGENT CONTROL AND AUTOMATION, VOLS 1-12, CONFERENCE PROCEEDINGS, 2006, : 4747 - +
[37] Dynamic Network Security Situation Prediction based on Bayesian Attack Graph and Big Data
Lin, Pengwen
Chen, Yonghong
[J]. PROCEEDINGS OF 2018 IEEE 4TH INFORMATION TECHNOLOGY AND MECHATRONICS ENGINEERING CONFERENCE (ITOEC 2018), 2018, : 992 - 998
[38] Network Security Situation Assessment Method Based on Markov Game Model
Li, Xi
Lu, Yu
Liu, Sen
Nie, Wei
[J]. KSII TRANSACTIONS ON INTERNET AND INFORMATION SYSTEMS, 2018, 12 (05): : 2414 - 2428
[39] A Method of Network Security Situation Assessment Based on Hidden Markov Model
Xiang, Shuang
Lv, Yanli
Xia, Chunhe
Li, Yuanlong
Wang, Zhihuan
[J]. COMPUTATIONAL INTELLIGENCE AND INTELLIGENT SYSTEMS, (ISICA 2015), 2016, 575 : 631 - 639
[40] An Efficient Network Security Situation Assessment Method Based on AE and PMU
Tao, Xiao-ling
Liu, Zi-yi
Yang, Chang-song
[J]. WIRELESS COMMUNICATIONS & MOBILE COMPUTING, 2021, 2021

← 1 2 3 4 5 →