Journal of Shanghai Jiaotong University ›› 2015, Vol. 49 ›› Issue (08): 1144-1152.

• Automation Technique, Computer Technology • Previous Articles     Next Articles

Network Security Situation Awareness Method Based on Multi-Source and Multi-Level Information Fusion

WEN Zhicheng1,2,CHEN Zhigang1,DENG Xiaoheng1,LIU Anfeng1   

  1. (1. School of Information Science and Engineering, Central South University, Changsha 410083, China;2. College of Computer and Communication, Hunan University of Technology, Zhuzhou 412007,  China)
  • Received:2014-09-15 Online:2015-08-31 Published:2015-08-31

Abstract:

Abstract: A comprehensive overall network security situation awareness framework was proposed, fully considering mul-information sources and multilevel information fusion, which can dynamically produce the current network security situation from the three dimensions, accurately reflect the current network security situation, and easily find the abnormal component. Besides,  a “3σ rule” to discretize continuous random variable was proposed that can establish a Bayesian network suitable for dealing with uncertain information fusion, providing important guidance to theory and practice. Making full use of network instance data, the model and algorithm are verified and the results show that the method is correct.

Key words: information fusion, Bayesian network, security situation awareness,  multi-information sources

CLC Number: