Multi-step attack dynamic defense decision selection method and system for network attack and defense

A dynamic defense and network technology, applied in the field of network security, can solve problems such as defense outweigh the gains, achieve reasonable defense decisions, improve network defense capabilities, and be easy to understand

Active Publication Date: 2019-12-20
PLA STRATEGIC SUPPORT FORCE INFORMATION ENG UNIV PLA SSF IEU
View PDF9 Cites 14 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

The advantage of the dynamic defense decision-making method is that multiple factors are considered comprehensively. From this point of view, it is better than static mapping. However, neither static mapping nor dynamic mapping considers the cost of defense, and is often exploited by attackers, resulting in a loss outweighed by the defense. Due to its good scalability and adaptability, it has become an important technical means at present

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Multi-step attack dynamic defense decision selection method and system for network attack and defense
  • Multi-step attack dynamic defense decision selection method and system for network attack and defense
  • Multi-step attack dynamic defense decision selection method and system for network attack and defense

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0034] In order to make the purpose, technical solution and advantages of the present invention more clear and understandable, the present invention will be further described in detail below in conjunction with the accompanying drawings and technical solutions.

[0035] At present, computer network has become the supporting infrastructure of informatization construction, and the network scale has developed explosively. While the Internet has brought great convenience to human work and life, it has also brought increasingly serious network security issues. In May 2017, a ransomware virus named "WannaCry" swept the world in just a few hours. Dozens of countries, medical care, government, enterprises and other industries have suffered serious losses. "WannaCry" ransomware attack is a typical multi-step APT attack, the process is as follows figure 2, the virus propagation process mainly utilizes two vulnerabilities in Windows. The attacker first locks the resources of enterprise...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention belongs to the technical field of network security, and particularly relates to a multi-step attack dynamic defense decision selection method and system for network attack and defense, and the method comprises the steps: generating a network attribute attack graph through the analysis of network security element information; constructing a network survivability game model based on the attack graph, representing an attack and defense strategy and a path by the model by utilizing an attack and defense strategy matrix, and quantifying attack and defense intensity and network survivability; predicting the next attack behavior of an attacker according to the attack strategy matrix in the model, and selecting the optimal multi-step attack defense strategy according to the attack defense strategy cost. The attack and defense strategy is implemented around the network survivability, the situation pre-judgment and defense strategy can be adjusted according to the dynamically changing attack and defense situation of the network, an easily understood and reasonable defense decision is provided for network security management personnel, the network defense capability is improved,the application prospect is good, and the method has important guiding significance and value for the network security technology.

Description

technical field [0001] The invention belongs to the technical field of network security, in particular to a multi-step attack dynamic defense decision selection method and system for network attack and defense. Background technique [0002] At present, there are many research results on network security defense, but they mainly focus on network defense technologies such as firewalls, intrusion detection, and information encryption. Network defense technology is one of the key factors to ensure network security, but technology itself is not the only master of victory in network attack and defense confrontation. In traditional confrontation, the level of decision-making and the formulation of strategies have an important impact on the outcome. Similarly, reasonable decision-making methods also play a very important role in network attack and defense confrontation. When the technical level of attack and defense is not much different, the level of offensive and defensive decis...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L12/24
CPCH04L41/142H04L41/145H04L41/147H04L63/1433H04L63/145H04L63/20
Inventor 胡浩张玉臣冷强赵昌军金辉孙怡峰周洪伟张畅汪永伟程相然
Owner PLA STRATEGIC SUPPORT FORCE INFORMATION ENG UNIV PLA SSF IEU
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap