首页 | 本学科首页   官方微博 | 高级检索  
     

基于记忆的关键信息基础设施安全检测技术
引用本文:李娟,崔甲,施蕾. 基于记忆的关键信息基础设施安全检测技术[J]. 北京理工大学学报, 2019, 39(9): 987-990. DOI: 10.15918/j.tbit1001-0645.2019.09.017
作者姓名:李娟  崔甲  施蕾
作者单位:中国信息安全测评中心,北京,100085;中国信息安全测评中心,北京,100085;中国信息安全测评中心,北京,100085
基金项目:自然科学联合基金(U173620014)
摘    要:提出基于记忆的关键信息基础设施安全检测技术,针对传统的入侵检测技术(IDS)、Web应用防火墙(WAF)技术在Web攻击检测方面的局限性,通过对Web应用攻击周期3个过程的全面分析理解,基于攻击链技术,可以对Web数据进行双向分析即时数据及历史数据,检测各种碎片化、持续性的攻击手段,并且能在黑客利用攻击时,同步感知各种漏洞,实时了解和掌握网络风险状况. 

关 键 词:Web应用攻击周期  攻击链  双向分析  攻击行为判定
收稿时间:2018-11-09

Based on Memory of Key Information Infrastructure Security Detection Technology
LI Juan,CUI Jia and SHI Lei. Based on Memory of Key Information Infrastructure Security Detection Technology[J]. Journal of Beijing Institute of Technology(Natural Science Edition), 2019, 39(9): 987-990. DOI: 10.15918/j.tbit1001-0645.2019.09.017
Authors:LI Juan  CUI Jia  SHI Lei
Affiliation:China Information Technology Security Evaluation Center, Beijing 100085, China
Abstract:A key information infrastructure security detection technology was proposed based on "memory" to overcome the limitations of the traditional IDS (intrusion detection technology) and WAF (web application firewall) technology in Web attack detection,in this paper. Analyzing comprehensively the three processes of the Web application attack cycle, an attack chain technology based method was used to be able to analyze the real-time data and historical data of Web data bidirectionally, detect various fragmented and persistent attack means, and simultaneously perceive all kinds of vulnerabilities when hackers use attacks, so as to understand and grasp the status of network risk in real time.
Keywords:Web application attack cycle  attack chain  bidirectional analysis  attack behavior determination
本文献已被 万方数据 等数据库收录!
点击此处可从《北京理工大学学报》浏览原始摘要信息
点击此处可从《北京理工大学学报》下载全文
设为首页 | 免责声明 | 关于勤云 | 加入收藏

Copyright©北京勤云科技发展有限公司  京ICP备09084417号