Network security situation awareness system and method based on information correlation

A network security and situational awareness technology, applied in the field of information security, can solve problems such as lack of data validity verification

Inactive Publication Date: 2012-02-01
INST OF COMPUTING TECH CHINESE ACAD OF SCI
View PDF1 Cites 96 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0016] An object of the present invention is to provide a network security situational awareness system and method based on information association, which is used to overcome the problems of existing network situational awareness systems that lack data validity verification, data correlation and quantitative analysis, thereby making network security Situational awareness is more accurate

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Network security situation awareness system and method based on information correlation
  • Network security situation awareness system and method based on information correlation
  • Network security situation awareness system and method based on information correlation

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0130] The present invention will be described in detail below in conjunction with the accompanying drawings and specific embodiments, but not as a limitation of the present invention.

[0131] Such as figure 1 As shown, it is a structural diagram of the network security situational awareness system based on information association in the present invention, figure 2 It is a structural diagram of the data collection module and the network security situation evaluation module of the present invention.

[0132] The system 100 includes the following modules:

[0133] The data collection module 10 is used to obtain basic network information from the network (i.e. network data source 110), obtain network topology information through topology self-discovery technology; obtain network vulnerability information through a combination of active scanning and passive sniffing , status information and operation information and other basic network security information; through the collect...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relates to a network security situation awareness system and method based on information correlation. The system comprises a data acquisition module, a network security situation evaluation module, a network security situation prediction module and a network situation visualization module, wherein the data acquisition module is used for acquiring network essential information; the network security situation evaluation module is used for quantitatively analyzing threat, frangibility and stability of the network by utilizing the network essential information, thereby analyzing the current network security situation; the network security situation prediction module is used for predicting the network security situation according to historical information and current state of the network security situation; and the network situation visualization module is used for visually displaying network security indexes according to the analysis and prediction result of the network security situation. The invention solves the problem that the existing network situation awareness system lacks data validity verification, data correlation and quantitative analysis, so that the network security situation awareness is more accurate.

Description

technical field [0001] The invention relates to the field of information security, in particular to an information association-based network security situation awareness system and a method thereof. Background technique [0002] At present, many scientific research institutions are conducting research and development of network situational awareness tools, and have made some progress. SiLK developed by CERT NetSA (Network Situational Awareness Team) is a traffic analysis tool. It can perform security analysis in large-scale networks, supports efficient collection, storage and analysis of network flow data, and enables network security analysts to quickly query relevant information from a large number of historical data sets, and evaluate network security situation based on the query results. Silk consists of two parts: collection system and analysis system. The collection system is responsible for receiving Netflow, converting it into a more reasonable format, and storing ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06
Inventor 席荣荣金舒原吴进董昭
Owner INST OF COMPUTING TECH CHINESE ACAD OF SCI
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap