关键词: 网络安全, 隐马尔可夫模型, 参数优化, 模拟退火算法, 态势评估

Abstract: With continuous fermentation “Internet+” industry, the importance of network security was promoted to unprecedented levels. To cope with Hidden Markov Model (HMM) parameters are difficult to configure, an improved method of situation assessment based on Hidden Markov Model (HMM) was proposed, more accurately reflect the security of the network. This method takes the output of intrusion detection system as input, classify the alarm events based on Snort manual, get the observation sequence, to establish the HMM model, the improved simulated annealing algorithm (SA) combined with the Baum_Welch algorithm (BW) to optimize the HMM parameters, using the method of quantitative analysis to get the security situational values of the network. The experimental results show that the scheme can improve the accuracy and convergence speed of the model.

Key words: network security, hidden Markov model, parameter optimization, simulated annealing algorithm, situation Assessment