摘要: |
由于网络的强大的互通性,安全事件的发生常常伴随着其他安全事件的触发,形成连锁反应,造成一定的危害和经济损失。本文从系统论的角度出发,研究网络安全事件之间的不同关联,分析安全事件演化的不同模式,以点、链、网的概念为基础,引入超网络进一步建立四层演化模式的概念,并针对安全事件的不同演化模式进行了详细分析;最后通过实际案例说明了安全事件演化模型的可行性。研究结论对于预防安全事件影响的扩大,以及危害的宏观预警具有一定的积极意义。 |
关键词: 网络安全事件 超网络 连锁演化 |
DOI:10.19363/J.cnki.cn10-1380/tn.2019.01.08 |
投稿时间:2018-09-30修订日期:2018-12-03 |
基金项目:本课题得到国家重点研发计划项目(No.2016YFB0800700);国家自然科学基金项目(No.61572460,No.61272481);信息安全国家重点实验室的开放课题(No.2017-ZD-01);国家发改委信息安全专项项目[No.(2012)1424]和国家111项目(No.B16037)的资助 |
|
Network Security Event Chain Evolution Model Based on Super Network |
JI Yixiao,WU Chensi,YANG Su,GUO Min,ZHANG Yuqing |
School of Network and Information Security, Xidian University, Xi'an 710071, China;National Computer Network Intrusion Prevention, University of Chinese Academy of Science, Beijing 101408, China;Beijing computer technology and application institute, Beijing 100000, China |
Abstract: |
Due to the strong interoperability of the network, the occurrence of security incidents is often triggered by other security incidents, forming a chain reaction, causing certain harm and economic losses. From the pers pective of system theory, this paper studies the different relationships between network security events, analyzes the different modes of security event evolution, and introduces the concept of point, chain and network to introduce the concept of four-layer evolution mode. The different evolution modes of security events are analyzed in detail. Finally, the feasibility of the security event evolution model is illustrated by actual cases. The conclusions of the study have certain positive significance for preventing the expansion of the impact of security incidents and the macro-warning of hazards. |
Key words: network security event super network chain evolution |