A Network Security Situation Awareness Model Based on Artificial Immune


Article Preview

Network security situation awareness is a new technology for network security monitoring and early warning, and is a hot spot in the area of network security. In this paper, the artificial immune technology is applied to the study of network security situation awareness, and a model is presented and implemented. The paper adopts the artificial immune-based intrution detection technology to real-timely monitor network attacks, and introduces vaccination mechanism to effectively improve the real-time network attack detection abilities of network hosts. In addition,the paper puts forward the concept of network group according to idiotypic immune network theory, and establishes a real-time and quantitive network risk assessment sub-model based on antibody concentration. The changes of antibody concentration are not only related to intrusion intensity, but also to interactions with antibodies in the same network group. To predict future network security situation trends,the paper adopts time-series prediction mechanism based on cloud models. Theoretical analysis and experimental results show that the model is effective to network security situation awareness with advantages of real-time and high accuracy.



Edited by:

Xuejun Zhou




R. R. Zhang and X. Xiao, "A Network Security Situation Awareness Model Based on Artificial Immune", Applied Mechanics and Materials, Vols. 99-100, pp. 1218-1221, 2011

Online since:

September 2011




[1] Bass T: Int rusion detection systems & multisensor data fusion : Creating Cyberspace Situational Awareness [J] . Communications of t he ACM , 43 (4) : 992105(2000).

[2] Tao Li: An Immune Based Model for Network Monitoring, Chinese Journal of Computers Vol. 29 (2006), pp.1515-1522, in Chinese.

[3] Deyi Li, Liu Changyu: Study on the Universality of the Normal Cloud Model. Engineering Science Vol. 6 (2004), pp.28-34, in Chinese.

[4] Mica R. Endsley. Toward a Theory of Situation Awareness in Dynamic Systems. Human Factors Journal. 37(1): 32-64P(1995).

[5] Kdd99. Kdd99 Cup Dataset[Z]. http: /kdd. ics. uci. edu/databases/kddcup99/kddcup99. htm(1999).