Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Network security situation awareness model and method based on attack graph

A network security and situational awareness technology, applied in data exchange networks, digital transmission systems, electrical components, etc., can solve problems such as the inability to carry out effective and reasonable situation forecasting and network security situation forecasting.

Active Publication Date: 2019-10-25
湖北央中巨石信息技术有限公司
View PDF9 Cites 48 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] However, the research on the network security situation started relatively late in China, and most of them are researches on the network threat quantification process and intrusion detection process, which can only analyze the past or current network security situation, and cannot predict the network security situation; and there are a few Prediction models can only be applied to specific standard systems and application scenarios. The vulnerability warning information published by some security vulnerability library websites is highly random and discrete, and ordinary situation analysis models can only obtain some information based on statistical methods. The distribution of attributes, analyzing the current network security status, cannot make effective and reasonable situation prediction

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Network security situation awareness model and method based on attack graph
  • Network security situation awareness model and method based on attack graph
  • Network security situation awareness model and method based on attack graph

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0070] In order to have a clearer understanding of the technical features, purposes and effects of the present invention, the specific implementation manners of the present invention will now be described in detail with reference to the accompanying drawings.

[0071] refer to figure 1 As shown, the network security situation awareness model based on the attack graph in the embodiment of the present invention includes a data preprocessing module 1, an attack signature library construction module 2, an attack status identification module 3, a security situation assessment module 4 and a security situation prediction module 5, in:

[0072] Data preprocessing module 1 is used to collect data sets from different sources, and extract principal component information for network security situation awareness, and then through data correlation analysis, after eliminating the redundancy of multi-source data, mining various The correlation between data, so as to obtain the vulnerability...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a network security situation awareness model and method based on an attack graph. The model comprises a data preprocessing module, an attack feature library construction module, an attack state identification module, a security situation evaluation module and a security situation prediction module. The method comprises: firstly, collecting data sets of different sources, and obtaining asset vulnerability threat data and asset attack threat data after preprocessing; further analyzing and training by utilizing the asset attack threat data and the principal component dataof the attack information, and establishing an attack feature library; matching the attack portrait, and determining the attack state of the current equipment; then, calculating a security situation value of the whole network by utilizing the asset attack threat data; and finally, predicting the next attack state through the attack and defense game matrix of the attack state diagram so as to predict the network security situation. A good situation awareness effect and a network security situation evaluation and prediction function are realized, and the model and the method have relatively goodpracticability, high efficiency and expansibility.

Description

Technical field: [0001] The invention relates to the field of computer network security, in particular to an attack graph-based network security situation awareness model. Background technique: [0002] With the rapid development of computer networks, network attacks are increasing year by year, and network security issues have become the focus of people's current attention. Usually, the network security situation is predicted, so that the network security status can be grasped before the network attack occurs. Therefore, corresponding protective measures are taken to avoid unnecessary attacks and losses. [0003] However, the research on the network security situation started relatively late in China, and most of them are researches on the network threat quantification process and intrusion detection process, which can only analyze the past or current network security situation, and cannot predict the network security situation; and there are a few Prediction models can on...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L12/24H04L29/06
CPCH04L41/145H04L41/147H04L63/1408H04L63/1433H04L63/1441
Inventor 洪长山
Owner 湖北央中巨石信息技术有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com