基于告警关联的网络安全风险评估方法的分析与实现-analysis and implementation of network security risk assessment method based on alarm association.docx
- 1、本文档共65页,可阅读全部内容。
- 2、有哪些信誉好的足球投注网站(book118)网站文档一经付费(服务费),不意味着购买了该文档的版权,仅供个人/单位学习、研究之用,不得用于商业用途,未经授权,严禁复制、发行、汇编、翻译或者网络传播等,侵权必究。
- 3、本站所有内容均由合作方或网友上传,本站不对文档的完整性、权威性及其观点立场正确性做任何保证或承诺!文档内容仅供研究参考,付费前请自行鉴别。如您付费,意味着您自己接受本站规则且自行承担风险,本站不退款、不进行额外附加服务;查看《如何避免下载的几个坑》。如果您已付费下载过本站文档,您可以点击 这里二次下载。
- 4、如文档侵犯商业秘密、侵犯著作权、侵犯人身权等,请点击“版权申诉”(推荐),也可以打举报电话:400-050-0827(电话支持时间:9:00-18:30)。
查看更多
基于告警关联的网络安全风险评估方法的分析与实现-analysis and implementation of network security risk assessment method based on alarm association
AbstractThenetworksecurityriskassessmentisthebasisofthenetworksecuritymanagement.Therationalityandaccuracyofriskassessmentapproacharehavingdirectimpactontheresultsoftherequirementsanalysisandtheaccuracyofsecuritypolicy.Becauseoftheextremelystrongtimelinessandincreasinglyenhancedinteractionofthemodernnetwork,thusfastandoverallmonitoringofthenetworksecurityriskisespeciallyimportant.It’salsothehottopicintheInformationsecurityfield.Basedonalertcorrelation,theevaluationmethodofnetworksecurityriskcanavoidthelimitationsoftheriskevaluationresultswhichcannotkeepupwiththedynamicchangesandquantifytheevaluationmetricsofnetworksecurityriskreal-time.Themainideasbehindthemethodare:first,usingsecurityalertforriskevaluation;second,assigningevaluationparametersofrelatedresourceinanalyzingsecurityalerts,basedontheevaluationofassets,threatsandvulnerabilities;third,dividingthenetworksystemintosystemservice,hostandnetwork,basedonthehierarchicalevaluationmodelofnetworksecurityrisk.Theriskvalueofeachalertcanreflecttherisksufferedbythehostsystemserviceandaccumulatingitcanquantifythethreatsimposedonthesystemserviceandtherebycalculatetheservicesecurityriskindex.Likewise,hostsecurityriskindexcanbecalculatedbytheindexofthehostservicesecurityriskandnetworksecurityriskindexcanbecalculatedbytheriskindexofhostinthenetwork.Basedonthemethoddiscussedabove,theRASAsystemisimplemented.Itcancollectdatafromlogandalertinformationproducedbyfirewall,IDSandanti-virusdeviceetc.Andformatitwhichisusedtoaggregatealertsusingthealertsimilaritymethod.ThenRASAwillconfirmalertsusingthecross-correlationmethod.Followingthisstep,RASAwilldotherulecorrelationofthealertsandextractassigninginformationoftheevaluationparameters.Andlastly,RASAwillquantifytheevaluationindexandgenerateriskevaluationreportsofalllevels.Experimentalresultsshowthatthemethodiseffectiveincalculatingthequantitativeriskofthecurrentnetworksystem,helpingadministratorstomanagenetworksecurity.Keywords:riskassessment,alertcorrelation,networksecurity目录摘要.......
您可能关注的文档
- 基于分形理论的卫星状态异变特征提取算法分析-analysis of satellite state variation feature extraction algorithm based on fractal theory.docx
- 基于分形维数和形状因子的土体物理性质与图像特征的关系研究-study on the relationship between soil physical properties and image characteristics based on fractal dimension and shape factor.docx
- 基于夫兰克——赫兹实验的氖原子光谱的特性研究-study on characteristics of neon atomic spectrum based on frank - hertz experiment.docx
- 基于服务2.0的服务设计模型研究——以lx公司e社区关爱服务项目为例-research on service design model based on service 2.0 - taking lx company e community care service project as an example.docx
- 基于服务导向的混合式教师培训模式设计与应用分析——以初中数学教师教育技术培训为例-design and application analysis of service-oriented mixed teacher training model - taking junior high school mathematics teacher education and technical training as an example.docx
- 基于服务导向的混合式教师培训模式设计与应用研究——以初中数学教师教育技术培训为例-research on design and application of mixed teacher training mode based on service orientation - taking junior high school mathematics teacher education technology training as an ex.docx
- 基于服务利润链理论的商业银行高校金融服务优化分析——以a银行与b学校的合作为例-analysis on the optimization of commercial banks' financial services in colleges and universities based on service profit chain theory - taking the cooperation between bank a and sch.docx
- 基于浮点数的cordic算法的分析与设计-analysis and design of cord ic algorithm based on floating point numbers.docx
- 基于符号时间序列研究的多尺度金融波动分析-multiscale financial volatility analysis based on symbolic time series research.docx
- 基于符号序列分析的股市网络结构及金融波动分析-analysis of stock market network structure and financial fluctuation based on symbolic sequence analysis.docx
文档评论(0)