| 基于记忆的关键信息基础设施安全检测技术 |
| |
| 引用本文: | 李娟,崔甲,施蕾.基于记忆的关键信息基础设施安全检测技术[J].北京理工大学学报,2019,39(9):987-990. |
| |
| 作者姓名: | 李娟 崔甲 施蕾 |
| |
| 作者单位: | 中国信息安全测评中心,北京,100085;中国信息安全测评中心,北京,100085;中国信息安全测评中心,北京,100085 |
| |
| 基金项目: | 自然科学联合基金(U173620014) |
| |
| 摘 要: | 提出基于记忆的关键信息基础设施安全检测技术,针对传统的入侵检测技术(IDS)、Web应用防火墙(WAF)技术在Web攻击检测方面的局限性,通过对Web应用攻击周期3个过程的全面分析理解,基于攻击链技术,可以对Web数据进行双向分析即时数据及历史数据,检测各种碎片化、持续性的攻击手段,并且能在黑客利用攻击时,同步感知各种漏洞,实时了解和掌握网络风险状况.
|
| 关 键 词: | Web应用攻击周期 攻击链 双向分析 攻击行为判定 |
| 收稿时间: | 2018/11/9 0:00:00 |
Based on Memory of Key Information Infrastructure Security Detection Technology |
| |
| LI Juan,CUI Jia and SHI Lei.Based on Memory of Key Information Infrastructure Security Detection Technology[J].Journal of Beijing Institute of Technology(Natural Science Edition),2019,39(9):987-990. |
| |
| Authors: | LI Juan CUI Jia and SHI Lei |
| |
| Institution: | China Information Technology Security Evaluation Center, Beijing 100085, China |
| |
| Abstract: | A key information infrastructure security detection technology was proposed based on "memory" to overcome the limitations of the traditional IDS (intrusion detection technology) and WAF (web application firewall) technology in Web attack detection,in this paper. Analyzing comprehensively the three processes of the Web application attack cycle, an attack chain technology based method was used to be able to analyze the real-time data and historical data of Web data bidirectionally, detect various fragmented and persistent attack means, and simultaneously perceive all kinds of vulnerabilities when hackers use attacks, so as to understand and grasp the status of network risk in real time. |
| |
| Keywords: | Web application attack cycle attack chain bidirectional analysis attack behavior determination |
| 本文献已被 万方数据 等数据库收录! |
| 点击此处可从《北京理工大学学报》浏览原始摘要信息 |
| 点击此处可从《北京理工大学学报》下载免费的PDF全文 |
|
