System and method for estimating network security situation based on index logarithm analysis

A technology for network security and situation assessment, applied in the field of information security, can solve the problem that the calculation process is not intuitive, and can not calculate multiple assets, threats, vulnerabilities, etc., and achieve the effect of intuitive calculation process.

Inactive Publication Date: 2011-08-10
UNIV OF SCI & TECH OF CHINA
View PDF1 Cites 24 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0006] The risk assessment method based on GB/T 20984-2007 can be used for reference in the assessment of network security situation, but the matrix method is only used in the situation where one element v

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • System and method for estimating network security situation based on index logarithm analysis
  • System and method for estimating network security situation based on index logarithm analysis
  • System and method for estimating network security situation based on index logarithm analysis

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0022] figure 1 The network security situation awareness system of the present invention is given, which includes a data collection subsystem, a network security situation understanding subsystem, a network security situation evaluation subsystem, and a security reinforcement scheme subsystem.

[0023] Among them, the data acquisition subsystem, through multiple sensors, including vulnerability scanning equipment, asset investigation equipment, network topology scanning equipment, intrusion detection system, virus protection software and hardware, firewall, etc., captures data on assets, threats, and vulnerabilities of the network system .

[0024] The network security situation understanding subsystem first establishes a data dictionary related to assets, threats, and vulnerabilities in the database, and then conducts statistical analysis on the original data collected by the data collection subsystem, removes duplication and error items, and modifies inconsistent items. Cor...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a system and method for estimating network security situation based on index logarithm analysis. The system is characterized by comprising a data acquisition sub-system, a network security situation understanding sub-system, a network security situation estimation sub-system and a security reinforcement scheme sub-system. The method comprises the following steps: A, carrying out statistical data fusion and correlation analysis on data of a network system in the aspects of asset, threat and vulnerability so as to obtain standardized data, wherein the data is acquired by a transducer; and B, carrying out the network security situation estimation on the fused standardized data in the step A based on the index logarithm analysis. The confidentiality, the integrity and the availability of the network security situation are estimated in the aspects of the asset, the threat and the vulnerability, and the estimation result is output. The system and method provided by the invention can be applied to the situation estimation and risk estimation. According to the system and method provided by the invention, the linear increment of the security situation can be avoided with the increment of network size, thus not only highlighting influences on security incidents with high hazard and significant assets, but also considering influences on security incidents with low hazard and nonsignificant assets, thereby complying with practical situations.

Description

technical field [0001] The invention belongs to the technical field of information security, and in particular relates to a network security situation assessment system and method based on logarithmic analysis. Background technique [0002] Situation Awareness (SA) is the perception and understanding of environmental factors and the prediction of its future development trend under certain time and space conditions. [0003] Network security situation awareness is to acquire, understand, evaluate and predict the future development trend of many factors affecting network security in a large-scale network environment. Fine Metrics. [0004] Situation assessment is the core of situation awareness, and it is a qualitative and quantitative description of network security status. Network security situation assessment is the foundation and key part of the whole network security situation awareness. [0005] Based on relevant information security technology and management standard...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L29/06H04L12/24
Inventor 谭小彬秦桂红徐鹏帅建梅
Owner UNIV OF SCI & TECH OF CHINA
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap