Research on real-time warning of network attack behavior based on characteristics of alarm events

高泽芳; 王岱辉; 王昀; 文成江

doi:10.13992/j.cnki.tetas.2018.12.008

Chinese

您当前的位置：

首页 >

文章列表页 >

Research on real-time warning of network attack behavior based on characteristics of alarm events

更新时间：2026-04-20

- Research on real-time warning of network attack behavior based on characteristics of alarm events
- Vol. 31, Issue 12, Pages: 33-37(2018)
- 作者机构：
  
  中国移动通信集团终端有限公司
- 作者简介：
- 基金信息：
- DOI：10.13992/j.cnki.tetas.2018.12.008
  CLC： TP393.08
- Published：2018
- 稿件说明：
移动端阅览
[1]高泽芳,王岱辉,王昀,文成江.基于告警事件特征的网络攻击行为实时预警研究[J].电信工程技术与标准化,2018,31(12):33-37.

高泽芳, 王岱辉, 王昀, et al. Research on real-time warning of network attack behavior based on characteristics of alarm events[J]. 2018, 31(12): 33-37.
[1]高泽芳,王岱辉,王昀,文成江.基于告警事件特征的网络攻击行为实时预警研究[J].电信工程技术与标准化,2018,31(12):33-37. DOI： 10.13992/j.cnki.tetas.2018.12.008.

高泽芳, 王岱辉, 王昀, et al. Research on real-time warning of network attack behavior based on characteristics of alarm events[J]. 2018, 31(12): 33-37. DOI： 10.13992/j.cnki.tetas.2018.12.008.

摘要

针对当前网络告警数据误报率过高以及新型网络攻击行为难以预测的问题

本文提出基于告警事件特征的网络攻击行为预测方法:采用FP

ree挖掘告警事件的关联规则并剔除虚假告警;然后利用序列模式提取网络攻击行为的特征

形成网络攻击事件组合规则

实现网络攻击行为的有效预警。通过相关的实验过程和结果分析

表明本文提出的方法能够有效、实时预警网络的攻击行为

具有一定的应用性和扩展性。

Abstract

In view of the high false alarm rate of network alarm data and the diffi culty of predicting new network attack behaviors

this paper proposes a network attack prediction method based on the characteristics of alarm events. First

ree is used to mine association rules of alarm events and eliminate false alarm. Then

the sequence pattern is used to extract the characteristics of network attacks

and the combination rules of network attacks are formed to realize the effective early warning of network attacks. Through the analysis of the related experimental process and results

it is shown that the proposed method can effectively and real-time warn the attack behavior of the network

and has certain applicability and expansibility.

关键词

Keywords

references

基于开源工具集的大数据网络安全态势感知及预警架构 [J]. 琚安康,郭渊博,朱泰铭. 计算机科学 . 2017(05)

基于攻击聚类的高校计算机网络入侵预警研究 [J]. 张昌州. 信息与电脑(理论版) . 2016(14)

基于知识发现的网络安全态势感知系统 [J]. 王春雷,方兰,王东霞,戴一奇. 计算机科学 . 2012(07)

基于关联规则数据挖掘Apriori算法的研究与应用 [J]. 郭涛,张代远. 计算机技术与发展 . 2011(06)

关联规则挖掘的Apriori算法综述 [J]. 赵洪英,蔡乐才,李先杰. 四川理工学院学报(自然科学版) . 2011(01)

基于关联规则挖掘的Q-CFIsL算法在网络入侵检测系统中的应用 [J]. 滕智源. 企业科技与发展 . 2010(10)

网络安全分布式预警体系结构研究 [J]. 张险峰,秦志光,刘锦德. 计算机应用 . 2004(05)

Views

下载量

CSCD

Alert me when the article has been cited

提交

Tools

Publicity Resources

No data

Related Author

No data

Related Institution

No data

AI问答

Postal code：100079
Tel：（010）53879206 Email：tmw@bjxintong.com.cn
Technical support is provided by Beijing Founder electronics co., LTD 京ICP备09082226号-64 京公网安备11010602201714号
It is recommended to read the content of this site in Chrome&IE9+. Please switch to extreme mode in browser 360.
Cookies We use cookies to help provide and enhance our service and tailor content. By continuing, you agree to the use of cookies.

⁰