论文信息 - A Novel Approach to Network Security Situation Awareness Based on Multi-Perspective Analysis

A Novel Approach to Network Security Situation Awareness Based on Multi-Perspective Analysis

Describing the security situation and its trend is the research hotspot of network security. As a new research field, Network security situation awareness (NSSA) includes three phases: situation perception, situation evaluation and situation prediction. This paper proposes a novel approach to NSSA model. The situation evaluation model adopts a multi-perspective analysis. It uses the description of security attacks, vulnerabilities and security services to evaluate current network security situation. The situation prediction model adopts time series analysis. It uses past and current situation map to forecast future network security situation. Simulation results show that the model is suitable and efficient.

[1] Jianhua Li,et al. A Novel Approach to Cyberspace Security Situation Based on the Vulnerabilities Analysis , 2006, 2006 6th World Congress on Intelligent Control and Automation.

[2] Chen Xiu. Quantitative Hierarchical Threat Evaluation Model for Network Security , 2006 .

[3] Tim Bass,et al. Intrusion detection systems and multisensor data fusion , 2000, CACM.

[4] William Stallings,et al. Cryptography and network security , 1998 .

[5] Mica R. Endsley,et al. Design and Evaluation for Situation Awareness Enhancement , 1988 .