[1]陆孺牛,刘吉,孙涛,等.基于态势感知的网络安全综合管控平台设计[J].深圳大学学报理工版,2020,37(增刊1):60-63.[doi:10.3724/SP.J.1249.2020.99060]
 LU Runiu,LIU Ji,SUN Tao,et al.Design of integrated network security management system based on situation awareness[J].Journal of Shenzhen University Science and Engineering,2020,37(增刊1):60-63.[doi:10.3724/SP.J.1249.2020.99060]
点击复制

基于态势感知的网络安全综合管控平台设计()
分享到:

《深圳大学学报理工版》[ISSN:1000-2618/CN:44-1401/N]

卷:
第37卷
期数:
2020年增刊1
页码:
60-63
栏目:
网络空间安全
出版日期:
2020-11-20

文章信息/Info

Title:
Design of integrated network security management system based on situation awareness
文章编号:
202099011
作者:
陆孺牛1刘吉2孙涛3魏克4
1)清华大学深圳国际研究生院信息中心,广东深圳 518055
2)北京大学深圳研究生院信息中心,广东深圳 518055
3)深圳大学城网络信息中心,广东深圳 518055
4)北京三思网安科技有限公司,北京100083
Author(s):
LU Runiu1 LIU Ji2 SUN Tao3 and WEI Ke4
1) Tsinghua University Shenzhen International Graduate School, Shenzhen 518055, Guangdong Province, P.R.China
2) Beijing University Shenzhen Graduate School, Shenzhen 518055, Guangdong Province, P.R.China
3) Town Network Information Center, Shenzhen University, Shenzhen 518055, Guangdong Province, P.R.China
4) Beijing Secspace Co. Ltd, Beijing 100083, P.R.China
关键词:
网络安全态势感知综合管控OODA环安全事件
Keywords:
network security situation awareness integrated security management OODA loop security events
分类号:
TP393.08
DOI:
10.3724/SP.J.1249.2020.99060
文献标志码:
A
摘要:
在日益严峻的网络安全形势下,高校网络中心需要高效、准确、智能地定位网络攻击,自动化处理安全事件.借助OODA LOOP决策模型,对态势感知理论进行延伸和扩展,建立由观察、判断、决策和行动4阶段构成的控制过程环.提出基于网络安全态势感知和OODA LOOP决策模型,建设网络安全管控平台的设计思路,为构建校园网安全一体化管理体系提供支撑.
Abstract:
At present, network centers in universities must try to efficiently, accurately and intelligently locate network attacks, and automatically handle security events. In this paper, we extend the concept of situational awareness based on the OODA Loop theory, and apply network security situation awareness (NSSA) to four stages: observe, orientation, decision, and action, which consist of a control process loop. We also propose the network security management and control platform based on NSSA concept to provide enough support for building an integrated campus network security management system.

参考文献/References:

[1] 李俊磊. 高校校园网网络安全态势感知建设研究[J]. 网络安全技术与应用,2020(8):96-97.
[2] 高薇,许浩,宁玉文,等. 计算机技术与发展[J]. 2018,28 (1):151-152.
[3] WANG H Q, LAI J B, ZHU L, et al. Survey of network situation awareness system[J]. Journal of Computer Science, 2006,33(10):5-10.
[4] ENDSLEY M R. Toward a theory of situation awareness in dynamic system[J]. Human Factors, 1995,37(1):32-64.
[5] FRANDE U, BRYNIELSSON J. Cyber situational awareness a systematic review of the literature[J]. Computers & Security, 2014,46:18-31.
[6] Government of Canada, Public Safety Canada. Canada’s cyber security strategy[EB/Online].[2010-10-23]. http://www.publicsafety.gc.ca/cnt/rsrcs/ pblctns/cbr-scrt-strtgy/cbr-scrt-strtgy-eng.pdf.
[7] BASS T, GRUBER D. A glimpse into the future of id[J]. The Magazine of USENIX & SAGE, 1999,24(3):40-49.
[8] 龚俭, 臧小东, 苏琪, 等. 网络安全态势感知综述[J]. 软件学报,2017,28(4):1010-1026.
[9] XIN D, GAI W L, WANG L, et al. Survey of cyberspace situation awareness model[J]. Journal of Computer Applications, 2013, 33(S2):245-250.
[10] GONG Z H, ZHUO Y. Research on cyberspace situational awareness[J]. Journal of Software, 2010,21(7):1605-1619.
[11] TADDA G P, SALERNO J S. Overview of cyber situation awareness[J]. Springer, 2010,46:15-35.
[12] LIU X W, WANG H Q, Lü H W, et al. Fusion-based cognitive awareness-control model for network security situation[J]. Journal of Software, 2016,27(8):2099-2114.
[13] 许浩,许卫中,高东怀,等.异构网络安全设备统一管理平台研究与构建[J].科学技术与工程,2012,20(1) : 203-206.

相似文献/References:

[1]刘宏伟,谢维信,喻建平.一种基于身份的无可信第三方签名方案[J].深圳大学学报理工版,2007,24(3):257.
 LIU Hong-wei,XIE Wei-xin,and YU Jian-ping.A scheme of identity-based signature without a trusted PKG[J].Journal of Shenzhen University Science and Engineering,2007,24(增刊1):257.
[2]闫巧.基于Bloom 滤波器的IP源地址假冒过滤[J].深圳大学学报理工版,2009,26(2):132.
 YAN Qiao.IPsourceaddressspoofingfilteringbasedonBloomfilter[J].Journal of Shenzhen University Science and Engineering,2009,26(增刊1):132.
[3]闫巧,宁土文.基于矩阵边采样的IP追踪[J].深圳大学学报理工版,2012,29(No.5(377-470)):399.[doi:10.3724/SP.J.1249.2012.05399]
 YAN Qiao and NING Tu-wen.IP traceback with matrix edge sampling[J].Journal of Shenzhen University Science and Engineering,2012,29(增刊1):399.[doi:10.3724/SP.J.1249.2012.05399]
[4]蔡良伟,程璐,李军,等.基于遗传算法的正则表达式规则分组优化[J].深圳大学学报理工版,2015,32(3):281.[doi:10.3724/SP.J.1249.2015.03281]
 Cai Liangwei,Cheng Lu,Li Jun,et al.Regular expression grouping optimization based on genetic algorithm[J].Journal of Shenzhen University Science and Engineering,2015,32(增刊1):281.[doi:10.3724/SP.J.1249.2015.03281]
[5]马云龙,张千里,李风华,等.基于IPoE的校园网IPv4/IPv6双栈准入认证设计与实现[J].深圳大学学报理工版,2020,37(增刊1):1.[doi:10.3724/SP.J.1249.2020.99001]
 MA Yunlong,ZHANG Qianli,LI Fenghua,et al.IPoE based campus network IPv4/IPv6 dual-stack admission control design and implementation[J].Journal of Shenzhen University Science and Engineering,2020,37(增刊1):1.[doi:10.3724/SP.J.1249.2020.99001]
[6]江魁,吴思维,王飞.校园网环境下DNSSEC系统的设计与实现[J].深圳大学学报理工版,2020,37(增刊1):50.[doi:10.3724/SP.J.1249.2020.99050]
 JIANG Kui,WU Siwei,and WANG Fei.Design and implementation of DNSSEC system in campus network environment[J].Journal of Shenzhen University Science and Engineering,2020,37(增刊1):50.[doi:10.3724/SP.J.1249.2020.99050]
[7]王宇,温占考,王卫东,等.校园网络IPv4/IPv6威胁监测与处置体系的规划与实践[J].深圳大学学报理工版,2020,37(增刊1):55.[doi:10.3724/SP.J.1249.2020.99055]
 WANG Yu,WEN Zhankao,WANG Weidong,et al.Planning and practice of IPv4/IPv6 dual-stack campus network’s security threat monitoring and handling system[J].Journal of Shenzhen University Science and Engineering,2020,37(增刊1):55.[doi:10.3724/SP.J.1249.2020.99055]
[8]秦道祥,林伟栋,徐国徽,等.网络安全视角下校园卡管理探索[J].深圳大学学报理工版,2020,37(增刊1):64.[doi:10.3724/SP.J.1249.2020.99064]
 QIN Daoxiang,LIN Weidong,XU Guohui,et al.Exploration of campus card management from the perspective of network security[J].Journal of Shenzhen University Science and Engineering,2020,37(增刊1):64.[doi:10.3724/SP.J.1249.2020.99064]
[9]金建栋,杨加,周昌令,等.勒索欺诈邮件僵尸网络的检测与分析[J].深圳大学学报理工版,2020,37(增刊1):78.[doi:10.3724/SP.J.1249.2020.99078]
 JIN Jiandong,YANG Jia,ZHOU Changling,et al.Network forensics analysis on email scam botnet[J].Journal of Shenzhen University Science and Engineering,2020,37(增刊1):78.[doi:10.3724/SP.J.1249.2020.99078]

备注/Memo

备注/Memo:
Received:2020-10-02
Corresponding author:Engineer LU Runiu.E-mail: lurn@sz.tsinghua.edu.cn
Citation:LU Runiu,LIU Ji, SUN Tao, et al.Design of integrated network security management system based on situation awareness[J]. Journal of Shenzhen University Science and Engineering, 2020, 37(Suppl.1): 60-63.(in Chinese)
作者简介:陆孺牛(1969—),清华大学深圳国际研究生院工程师. 研究方向:计算机网络技术及应用. E-mail:lurn@sz.tsinghua.edu.cn
引文:陆孺牛,刘吉,孙涛,等. 基于态势感知的网络安全综合管控平台设计[J]. 深圳大学学报理工版,2020,37(增刊1):60-63.
更新日期/Last Update: 2020-11-26