《電子技術(shù)應(yīng)用》
您所在的位置:首頁 > 通信與網(wǎng)絡(luò) > 設(shè)計應(yīng)用 > 漁政管理系統(tǒng)網(wǎng)絡(luò)環(huán)境威脅態(tài)勢分析
漁政管理系統(tǒng)網(wǎng)絡(luò)環(huán)境威脅態(tài)勢分析
信息技術(shù)與網(wǎng)絡(luò)安全 10期
陳孟婕,劉慧媛,蔣慶朝,徐 碩,倪晨翰
(中國水產(chǎn)科學(xué)研究院漁業(yè)工程研究所,北京100141)
摘要: 網(wǎng)絡(luò)環(huán)境中存在多項確定性和不確定性影響因素,各項因素對整體網(wǎng)絡(luò)環(huán)境的影響程度不同,通過研究多項網(wǎng)絡(luò)影響因素作用下的網(wǎng)絡(luò)威脅評估方法,可準(zhǔn)確識別網(wǎng)絡(luò)環(huán)境態(tài)勢與潛在的發(fā)展趨勢。以漁政管理系統(tǒng)網(wǎng)絡(luò)管理日志數(shù)據(jù)為研究對象,構(gòu)建基于集對分析理論的多因素網(wǎng)絡(luò)環(huán)境威脅綜合評估模型,通過集對勢、偏聯(lián)系數(shù)計算,分析了系統(tǒng)在攻擊流量、威脅等級、相關(guān)度等方面的表現(xiàn)。評估模型提供了系統(tǒng)整體網(wǎng)絡(luò)環(huán)境以及各項影響因素的威脅態(tài)勢和潛在發(fā)展趨勢,為漁政管理系統(tǒng)網(wǎng)絡(luò)安全運維工作提供指導(dǎo)建議,也為信息系統(tǒng)網(wǎng)絡(luò)威脅情報的分析和應(yīng)用提供了研究思路。
中圖分類號: TP393.4
文獻標(biāo)識碼: A
DOI: 10.19358/j.issn.2096-5133.2021.10.006
引用格式: 陳孟婕,劉慧媛,蔣慶朝,等. 漁政管理系統(tǒng)網(wǎng)絡(luò)環(huán)境威脅態(tài)勢分析[J].信息技術(shù)與網(wǎng)絡(luò)安全,2021,40(10):38-42.
Analysis on the cyber threat situation posture of the fishery administration system
Chen Mengjie,Liu Huiyuan,Jiang Qingzhao,Xu Shuo,Ni Chenhan
(Fishery Engineering Research Institute,Chinese Academy of Fishery Sciences,Beijing 100141,China)
Abstract: There are multiple deterministic and uncertain influencing factors in the network environment, and each factor has a different degree of influence on the overall network environment. By studying the network threat assessment methods based on the effect of multiple network influencing factors, the situation of the network environment and potential development trends can be accurately identified. Taking the network management log data of the fishery management system as the research object, a multi-factor network environment threat assessment model based on the set pair theory was constructed. Through the calculation of the set pair potential and partial connection number, the performance of the system in terms of attack flow, threat level, and relevance was analyzed. The evaluation model provided the overall network environment of the system and the threat situation and potential development trends of various influencing factors, and assisted in the decision-making of the network security operation and maintenance of the fishery management system. The evaluation model and research method constructed in this paper provided a research idea for the analysis and application of cyber threat intelligence in information systems.
Key words : network security;network threats;network operation and maintenance management;network log analysis;set pair analysis theory

0 引言

漁政管理系統(tǒng)是面向漁業(yè)管理的全國性政務(wù)系統(tǒng)。在云計算、大數(shù)據(jù)背景下,層出不窮的信息安全事件給包括漁政管理系統(tǒng)在內(nèi)的各類政務(wù)系統(tǒng)網(wǎng)絡(luò)安全運維工作帶來巨大的挑戰(zhàn)。由于網(wǎng)絡(luò)攻擊的方式日趨規(guī)?;?、分布化、復(fù)雜化,破壞性越來越大,傳統(tǒng)的網(wǎng)絡(luò)防護系統(tǒng)在對攻擊行為做出攔截時,系統(tǒng)運維人員對全局狀態(tài)的感知能力較差。系統(tǒng)的網(wǎng)絡(luò)日志遍布于數(shù)據(jù)庫、Web中間件、服務(wù)器、網(wǎng)絡(luò)設(shè)備等各個節(jié)點,數(shù)據(jù)指標(biāo)從不同角度反映了網(wǎng)絡(luò)環(huán)境,對網(wǎng)絡(luò)日志數(shù)據(jù)的分析研究可以準(zhǔn)確掌握系統(tǒng)運行狀態(tài)以及潛在網(wǎng)絡(luò)安全威脅等信息,為系統(tǒng)功能與性能的優(yōu)化、安全方案的制定提供依據(jù)。

網(wǎng)絡(luò)態(tài)勢評估可實現(xiàn)態(tài)勢因子集合到態(tài)勢結(jié)果的映射。相關(guān)研究包括理論創(chuàng)新引入到態(tài)勢評估領(lǐng)域,例如集對分析理論、證據(jù)理論、粗糙集理論、灰關(guān)聯(lián)分析理論;以及傳統(tǒng)方法的擴展,例如貝葉斯技術(shù)、基于知識的方法、向量機方法、人工神經(jīng)網(wǎng)絡(luò)方法、模糊邏輯方法等[1-7]。集對分析理論相比于其他方法,具有模型計算復(fù)雜度低,不需要推理規(guī)則、先驗知識,結(jié)果易于解釋等優(yōu)點,在多個領(lǐng)域有廣泛應(yīng)用,例如多方案比選、工程風(fēng)險評價、資源環(huán)境評估、安全管理等[8-9]。


本文詳細內(nèi)容請下載:http://ihrv.cn/resource/share/2000003801





作者信息:

陳孟婕,劉慧媛,蔣慶朝,徐  碩,倪晨翰

(中國水產(chǎn)科學(xué)研究院漁業(yè)工程研究所,北京100141)


此內(nèi)容為AET網(wǎng)站原創(chuàng),未經(jīng)授權(quán)禁止轉(zhuǎn)載。