《電子技術(shù)應(yīng)用》
您所在的位置:首頁 > 通信與網(wǎng)絡(luò) > 設(shè)計(jì)應(yīng)用 > 漁政管理系統(tǒng)網(wǎng)絡(luò)環(huán)境威脅態(tài)勢(shì)分析
漁政管理系統(tǒng)網(wǎng)絡(luò)環(huán)境威脅態(tài)勢(shì)分析
信息技術(shù)與網(wǎng)絡(luò)安全 10期
陳孟婕,劉慧媛,蔣慶朝,徐 碩,倪晨翰
(中國水產(chǎn)科學(xué)研究院漁業(yè)工程研究所,北京100141)
摘要: 網(wǎng)絡(luò)環(huán)境中存在多項(xiàng)確定性和不確定性影響因素,各項(xiàng)因素對(duì)整體網(wǎng)絡(luò)環(huán)境的影響程度不同,通過研究多項(xiàng)網(wǎng)絡(luò)影響因素作用下的網(wǎng)絡(luò)威脅評(píng)估方法,可準(zhǔn)確識(shí)別網(wǎng)絡(luò)環(huán)境態(tài)勢(shì)與潛在的發(fā)展趨勢(shì)。以漁政管理系統(tǒng)網(wǎng)絡(luò)管理日志數(shù)據(jù)為研究對(duì)象,構(gòu)建基于集對(duì)分析理論的多因素網(wǎng)絡(luò)環(huán)境威脅綜合評(píng)估模型,通過集對(duì)勢(shì)、偏聯(lián)系數(shù)計(jì)算,分析了系統(tǒng)在攻擊流量、威脅等級(jí)、相關(guān)度等方面的表現(xiàn)。評(píng)估模型提供了系統(tǒng)整體網(wǎng)絡(luò)環(huán)境以及各項(xiàng)影響因素的威脅態(tài)勢(shì)和潛在發(fā)展趨勢(shì),為漁政管理系統(tǒng)網(wǎng)絡(luò)安全運(yùn)維工作提供指導(dǎo)建議,也為信息系統(tǒng)網(wǎng)絡(luò)威脅情報(bào)的分析和應(yīng)用提供了研究思路。
中圖分類號(hào): TP393.4
文獻(xiàn)標(biāo)識(shí)碼: A
DOI: 10.19358/j.issn.2096-5133.2021.10.006
引用格式: 陳孟婕,劉慧媛,蔣慶朝,等. 漁政管理系統(tǒng)網(wǎng)絡(luò)環(huán)境威脅態(tài)勢(shì)分析[J].信息技術(shù)與網(wǎng)絡(luò)安全,2021,40(10):38-42.
Analysis on the cyber threat situation posture of the fishery administration system
Chen Mengjie,Liu Huiyuan,Jiang Qingzhao,Xu Shuo,Ni Chenhan
(Fishery Engineering Research Institute,Chinese Academy of Fishery Sciences,Beijing 100141,China)
Abstract: There are multiple deterministic and uncertain influencing factors in the network environment, and each factor has a different degree of influence on the overall network environment. By studying the network threat assessment methods based on the effect of multiple network influencing factors, the situation of the network environment and potential development trends can be accurately identified. Taking the network management log data of the fishery management system as the research object, a multi-factor network environment threat assessment model based on the set pair theory was constructed. Through the calculation of the set pair potential and partial connection number, the performance of the system in terms of attack flow, threat level, and relevance was analyzed. The evaluation model provided the overall network environment of the system and the threat situation and potential development trends of various influencing factors, and assisted in the decision-making of the network security operation and maintenance of the fishery management system. The evaluation model and research method constructed in this paper provided a research idea for the analysis and application of cyber threat intelligence in information systems.
Key words : network security;network threats;network operation and maintenance management;network log analysis;set pair analysis theory

0 引言

漁政管理系統(tǒng)是面向漁業(yè)管理的全國性政務(wù)系統(tǒng)。在云計(jì)算、大數(shù)據(jù)背景下,層出不窮的信息安全事件給包括漁政管理系統(tǒng)在內(nèi)的各類政務(wù)系統(tǒng)網(wǎng)絡(luò)安全運(yùn)維工作帶來巨大的挑戰(zhàn)。由于網(wǎng)絡(luò)攻擊的方式日趨規(guī)模化、分布化、復(fù)雜化,破壞性越來越大,傳統(tǒng)的網(wǎng)絡(luò)防護(hù)系統(tǒng)在對(duì)攻擊行為做出攔截時(shí),系統(tǒng)運(yùn)維人員對(duì)全局狀態(tài)的感知能力較差。系統(tǒng)的網(wǎng)絡(luò)日志遍布于數(shù)據(jù)庫、Web中間件、服務(wù)器、網(wǎng)絡(luò)設(shè)備等各個(gè)節(jié)點(diǎn),數(shù)據(jù)指標(biāo)從不同角度反映了網(wǎng)絡(luò)環(huán)境,對(duì)網(wǎng)絡(luò)日志數(shù)據(jù)的分析研究可以準(zhǔn)確掌握系統(tǒng)運(yùn)行狀態(tài)以及潛在網(wǎng)絡(luò)安全威脅等信息,為系統(tǒng)功能與性能的優(yōu)化、安全方案的制定提供依據(jù)。

網(wǎng)絡(luò)態(tài)勢(shì)評(píng)估可實(shí)現(xiàn)態(tài)勢(shì)因子集合到態(tài)勢(shì)結(jié)果的映射。相關(guān)研究包括理論創(chuàng)新引入到態(tài)勢(shì)評(píng)估領(lǐng)域,例如集對(duì)分析理論、證據(jù)理論、粗糙集理論、灰關(guān)聯(lián)分析理論;以及傳統(tǒng)方法的擴(kuò)展,例如貝葉斯技術(shù)、基于知識(shí)的方法、向量機(jī)方法、人工神經(jīng)網(wǎng)絡(luò)方法、模糊邏輯方法等[1-7]。集對(duì)分析理論相比于其他方法,具有模型計(jì)算復(fù)雜度低,不需要推理規(guī)則、先驗(yàn)知識(shí),結(jié)果易于解釋等優(yōu)點(diǎn),在多個(gè)領(lǐng)域有廣泛應(yīng)用,例如多方案比選、工程風(fēng)險(xiǎn)評(píng)價(jià)、資源環(huán)境評(píng)估、安全管理等[8-9]。


本文詳細(xì)內(nèi)容請(qǐng)下載:http://ihrv.cn/resource/share/2000003801





作者信息:

陳孟婕,劉慧媛,蔣慶朝,徐  碩,倪晨翰

(中國水產(chǎn)科學(xué)研究院漁業(yè)工程研究所,北京100141)


此內(nèi)容為AET網(wǎng)站原創(chuàng),未經(jīng)授權(quán)禁止轉(zhuǎn)載。