A network security emergency response knowledge map entity alignment method
A knowledge graph and network security technology, applied in the field of network security emergency response knowledge graph entity alignment, can solve the problems of lack of knowledge graph graph structure and context information utilization, neglect of analysis and logical consistency, and difficult to obtain, etc., to achieve fast and efficient emergency response Responsiveness, improving operational effectiveness, and improving accuracy
Active Publication Date: 2022-06-07
南京大数据安全技术有限公司
View PDF0 Cites 0 Cited by
- Summary
- Abstract
- Description
- Claims
- Application Information
AI Technical Summary
Problems solved by technology
The acquisition of these known mappings requires a lot of manual work, which is often not easy to obtain in practical applications.
In addition, this type of model predicts the mapping of each entity independently, ignoring the overall analysis and logical consistency, which usually leads to some wrong mappings
[0006] However, the traditional model based on reasoning and vocabulary matching, although it makes up for the lack of logical reasoning of the former, has a certain degree of scalability, and does not require training on known mappings, but lacks the graphical structure and context of knowledge graphs. ability to use information
Method used
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View moreImage
Smart Image Click on the blue labels to locate them in the text.
Smart ImageViewing Examples
Examples
Experimental program
Comparison scheme
Effect test
Embodiment Construction
[0093]In order to describe in detail the technical content, structural features, achieved objectives and effects of the technical solution, the following detailed description is given in conjunction with specific embodiments and accompanying drawings.
[0094] The embodiment of the present invention provides a network security emergency response knowledge map entity alignment method, which is a key step in the process of building a comprehensive network security emergency response knowledge map, in order to conduct in-depth analysis of security events in the follow-up, and generate accurate and effective scripts. Realizing fast and efficient emergency response, laying a solid foundation and improving the operation effect of SOC (Network Security Management Platform). The method combines traditional reasoning technology and the most advanced embedding technology to align knowledge graphs, which can be implemented by PARIS (Probabilistic Alignment Model of Relationships, Instance...
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More PUM
Login to View More Abstract
The invention discloses a network security emergency response knowledge map entity alignment method, which includes: inputting the knowledge map into a PR module based on the PARIS model for calculation, and outputting a security event entity mapping set and its corresponding equivalent probability; In the security event entity mapping set, select the corresponding security event entity mapping with high equivalent probability as the alignment seed, input the SE module based on the embedded MultiKE model for training; output the security event entity embedding and the security event obtained by the proximity retrieval algorithm The entity mapping set and the similarity score of each corresponding mapping; the obtained one is used as input for the next round of calculation; after K iterations, the PR module outputs the security event entity mapping set; this scheme can combine multiple different network The safety emergency response knowledge map is fused into a knowledge map with more comprehensive knowledge and higher accuracy.
Description
technical field [0001] The invention relates to the field of network security knowledge map, in particular to a network security emergency response knowledge map entity alignment method. Background technique [0002] In recent years, the problem of network threats has become more and more frequent. The new generation of network threats has the characteristics of fast spreading, wide coverage and long latency, which makes the staff of the network security emergency response team face huge challenges. A routine incident response often involves multiple systems or procedures. Facing hundreds of thousands of network attacks every day, a large number of repetitive manual operations are required, resulting in low response efficiency. To this end, a new security emergency technology SOAR is proposed. Based on the knowledge map of network security emergency response, according to different threat scenarios, scripts are automatically generated to prevent attacks, which greatly saves ...
Claims
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More Application Information
Patent Timeline
Login to View More Patent Type & Authority Patents(China)
IPC IPC(8): G06F16/36G06F40/189G06F40/216G06K9/62G06N5/04G06N3/04
CPCG06F16/367G06F40/189G06F40/216G06N5/04G06N3/045G06F18/22
Inventor 车洵孙捷梁小川胡牧金奎徐达刘志顺
Owner 南京大数据安全技术有限公司