Network security situation evaluation based on modified D-S evidence theory |
| |
| Authors: | Chundong Wang Yu Zhang |
| |
| Institution: | 1. Key Laboratory of Computer Vision and System, Ministry of Education / Tianjin Key Laboratory of Intelligence Computing and Novel Software Technology, Tianjin University of Technology, Tianjin, 300384, China
|
| |
| Abstract: | With the rapid development of global information and the increasing dependence on network for people, network security problems are becoming more and more serious. By analyzing the existing security assessment methods, we propose a network security situation evaluation system based on modified D-S evidence theory is proposed. Firstly, we give a modified D-S evidence theory to improve the reliability and rationality of the fusion result and apply the theory to correlation analysis. Secondly, the attack successful support is accurately calculated by matching internal factors with external threats. Multi-module evaluation is established to comprehensively evaluate the situation of network security. Finally we use an example of actual network datasets to validate the network security situation evaluation system. The simulation result shows that the system can not only reduce the rate of false positives and false alarms, but also effectively help analysts comprehensively to understand the situation of network security. |
| |
| Keywords: | network security situation evaluation information fusion D-S evidence theory Bayes network theory |
| 本文献已被 CNKI 维普 SpringerLink 等数据库收录! |
|
