Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Network attack prediction model construction method based on uncertainty perception attack graph

A technology of uncertainty and prediction model, applied in the field of network security, it can solve the problem of no attack probability, uncertainty, and the attack prediction model cannot more accurately predict network attacks, so as to achieve accurate alarm management and perfect prediction model. Effect

Active Publication Date: 2019-07-12
BEIJING INSTITUTE OF TECHNOLOGYGY
View PDF5 Cites 10 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

In the invention, the uncertainty analysis of the attack is defined as the attack prediction. Most of the research is to predict the attack through the attack graph, but the attack graph mainly records some static information such as some network vulnerability information and the relationship between vulnerabilities. information, relatively little consideration is given to dynamic factors in the network
One is that the factors that can dynamically reflect the network security status, such as the intrusion alarm detected by the intrusion detection system, the service dependencies in the network, and the network intrusion response information, are not taken into account. The other is that there is no uncertainty in the attack probability, which makes the attack Predictive models cannot predict cyber attacks more accurately

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Network attack prediction model construction method based on uncertainty perception attack graph
  • Network attack prediction model construction method based on uncertainty perception attack graph
  • Network attack prediction model construction method based on uncertainty perception attack graph

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0019] The present invention will be described in detail below with reference to the accompanying drawings and examples.

[0020] The present invention provides a method for constructing a network attack prediction model based on an uncertainty-aware attack graph, such as figure 1 shown, including the following steps:

[0021] Step 1. Add the uncertainty probability of the vulnerability being attacked to the attack graph to obtain the uncertainty-aware attack graph. The uncertainty probability is obtained through expert experience.

[0022] The uncertainty probability in the uncertainty-aware attack graph is calculated by the following two formulas, where P^(n i ) is obtained by expert experience, and the present invention is obtained by the CVSS scoring system; n i represents the nodes on the attack graph; P (old) (n i ) represents the minimum value of the initial uncertainty probability; P -(old) (n i ) represents the maximum value of the initial uncertainty probabili...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a network attack prediction model construction method based on an uncertain perception attack graph, which comprises the following steps: 1, adding an uncertain probability that vulnerabilities are attacked on the attack graph to obtain an uncertain perception attack graph; 2, associating the alarm information generated by the intrusion detection system when the service inthe network system is attacked, generating an alarm association graph, and generating an intrusion response graph by using a response decision corresponding to the alarm information; 3, according to the source host address of the alarm, the destination host address of the alarm, the source port number of the alarm, the destination port number of the alarm, the protocol used for alarm transmissionand the vulnerability number corresponding to the generated alarm, improving the uncertainty probability; 4, improving the uncertainty probability through the incidence relation between the response decisions in the intrusion response graph and the response cost; 5, obtaining the probability that the service is attacked according to the uncertainty probability so as to obtain a prediction attack model; the network attack prediction method can realize accurate and comprehensive prediction of the network attack.

Description

technical field [0001] The invention belongs to the technical field of network security, and in particular relates to a method for constructing a network attack prediction model based on an uncertainty-aware attack graph. Background technique [0002] In real life, the forms of network attacks are ever-changing, and it is costly to take measures after the attack occurs and causes serious consequences, and it will cause inestimable losses, so the research on attack prediction came into being. In the invention, the uncertainty analysis of the attack is defined as the attack prediction. Most of the research is to predict the attack through the attack graph, but the attack graph mainly records some network vulnerability information, the relationship between vulnerabilities and other static information. information, relatively little consideration is given to the dynamic factors in the network. One is that the factors that can dynamically reflect the network security status, suc...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06
CPCH04L63/1416H04L63/1433
Inventor 胡昌振单纯高洁刘臻熊玲
Owner BEIJING INSTITUTE OF TECHNOLOGYGY
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products