Selection and Fusion of Indicators for Network Security Situational Awareness

Yan Ming Fu; Pan Chen; Mi Zhong; Wen Chen

doi:10.4028/www.scientific.net/AMR.179-180.613

Paper Titles

Reduced Recoil Loop Area in Zr Doped α-Fe/Nd₂Fe₁₄B Nanocomposite Alloys
p.590

Modification of Printing Aluminum Powders by Wet Covering Method with Composite Surfactants
p.596

Study of Intelligent Diagnosis System for Photoelectric Tracking Devices Based on Multiple Knowledge Representation
p.602

A Refined Method for the Extraction of Scutellaria Baicalensis Extracts and its Relationship with Antibacterial Effects
p.608

Selection and Fusion of Indicators for Network Security Situational Awareness
p.613

Natural Attenuation of Diesel Fuels Contaminated Medium Sand with Different Water Content in Vadose Zone
p.619

Structure Reverse Design and Abrasion-Resistant Performance of Submersible Mixer’s Impeller Based on 3D Solid Model
p.625

Research on Environmental Optimization Mechanism of the Northeast Old Industrial Base
p.630

Model and Control on Hysteresis of Piezoelectric Actuator
p.635

HomeAdvanced Materials ResearchAdvanced Materials Research Vols. 179-180Selection and Fusion of Indicators for Network...

Selection and Fusion of Indicators for Network Security Situational Awareness

Abstract:

Network security situational awareness process collects security data from system log and security tools, extracts values of situational indicators and fuses these indicators values into security situation value. The security situational value reflects the all-side security situation of cyberspace. The selection and fusion of indicators become critical to precision of situation value. In the paper, an approach will be introduced to select indicators based on a hierarchical framework of network security situational awareness. These indicators will be fused into situation value depended on formulas that are deduced in accordance with the hierarchical framework.

You might also be interested in these eBooks

View Preview

Info:

Periodical:

Advanced Materials Research (Volumes 179-180)

Pages:

613-618

DOI:

https://doi.org/10.4028/www.scientific.net/AMR.179-180.613

Citation:

Cite this paper

Online since:

January 2011

Authors:

Yan Ming Fu, Pan Chen, Mi Zhong, Wen Chen

Keywords:

Indicator Fusion, Indicator Quantization, Indicators, Network Security Situational Awareness

Export:

RIS, BibTeX

Price:

Permissions CCC:

Request Permissions

Permissions PLS:

Request Permissions

Сopyright:

Citation:

References

[1] Bass T, Intrusion Detection Systems and Multi-sensor Data Fusion: Creating Cyberspace Situation Awareness, Communication of the ACM, Vol 43(4)(2000), pp.99-105.

Google Scholar

[2] Endsley M R, Toward A Theory of Situation Awareness in Dynamic System, Human Factors, Vol 37(1)(1995), pp.32-64.

Google Scholar

[3] Chen Xiuzhen, Zheng Qinghua, Guan Xiaohong, Lin Chenguang, Quantitative Hierarchical Threat Evaluation Model for Network Security, Journal of Software, vol 17(4) (2004), pp.885-887.

Google Scholar

[4] Hu Wei, Li Jianhua, Chen Xiuzhen, Jiang Xinghao and Zou Min, A Scalable Model for Network Situational Awareness Based on Endsley's Situation Model, High Technology Letters, vol 13(4)( 2007), pp.395-401.

Google Scholar

[5] Roesch M, Green C, Snort Users Manual, Snort Release 2. 0. 0.

Google Scholar

[6] Matt. Bishop, Introduction to Computer Security, Prentice Hall PTR (2004).

Google Scholar