Improved network security situational assessment method based on FAHP

doi:10.11772/j.issn.1001-9081.2014.09.2622

Journal of Computer Applications ›› 2014, Vol. 34 ›› Issue (9): 2622-2626.DOI: 10.11772/j.issn.1001-9081.2014.09.2622

Previous Articles Next Articles

Improved network security situational assessment method based on FAHP

LI Fangwei,YANG Shaocheng,ZHU Jiang

Chongqing Key Laboratory of Mobile Communications Technology (Chongqing University of Posts and Telecommunications), Chongqing 400065, China

Received:2014-04-11 Revised:2014-06-10 Online:2014-09-30 Published:2014-09-01
Contact: YANG Shaocheng

基于模糊层次法的改进型网络安全态势评估方法

李方伟,杨绍成,朱江

移动通信技术重庆市重点实验室(重庆邮电大学)，重庆 400065

通讯作者: 杨绍成
作者简介:
李方伟(1960-),男,重庆南岸人,教授,博士生导师,主要研究方向:态势感知;
杨绍成(1990-),男,重庆璧山人,硕士研究生,主要研究方向:态势感知;
朱江(1977-),男,湖北荆州人,副教授,博士,主要研究方向:认知无线电。
基金资助:
国家自然科学基金资助项目;教育部科学研究重点项目;重庆市教委科学技术研究项目

Abstract

Abstract:

To minimize damage from network security problem, an improved network security situation assessment model based on Fuzzy Analytic Hierarchy Process (FAHP) was proposed. First, a set of index system in conformity with actual environment which consists of index layer, criterion layer and decision layer was established in consideration of the large-scale network environment in the future. Aiming at the influence on evaluation by data distribution uncertainty and fuzziness in situation assessment, the proposed model used Fuzzy C-Means (FCM) clustering algorithm and the best clustering criterion for data preprocessing to get the optimal cluster number and cluster center. Finally, multi-factor secondary assessment model was established for situation assessment vector. The simulation results show that, compared with the present situation assessment method based on FAHP, the improved method takes the factors which have small weights into consideration better, so the standard deviation is smaller and evaluation results are more objective and accurate.

摘要：

为最大限度降低网络安全问题带来的损失，提出一种基于模糊层次分析法(FAHP)的改进型网络安全态势评估模型。鉴于未来的大规模网络环境，首先建立一套符合实际环境的，由指标层、准则层、决策层三层组成的态势指标体系；针对态势评估中的数据分布不确定性、模糊性对评估结果的影响，利用模糊C-均值(FCM)聚类和最佳聚类准则进行数据预处理，得到最佳聚类数和聚类中心；最终建立多因素二级评估模型得到态势评估向量。仿真结果表明，与目前的基于模糊层次法的态势评估方法相比，更好地考虑到某些权重小的因素，因而标准偏差更小，评估结果更加客观、准确。

CLC Number:

TP393

LI Fangwei YANG Shaocheng ZHU Jiang. Improved network security situational assessment method based on FAHP[J]. Journal of Computer Applications, 2014, 34(9): 2622-2626.

李方伟杨绍成朱江. 基于模糊层次法的改进型网络安全态势评估方法[J]. 计算机应用, 2014, 34(9): 2622-2626.

References

［1］ZHANG B Y. A quantitative network situation assessment method based on stochastic model ［J］. Applied Mechanics and Materials, 2014, 513(6): 768-771.

［2］FISCHER Y, BEYERER J. Ontologies for probabilistic situation assessment in the maritime domain ［C］// CogSIMA: Proceedings of the 2013 IEEE International Multi-disciplinary Conference on Cognitive Methods in Situation Awareness and Decision Support. Piscataway: IEEE, 2013: 102-105.

［3］JANSEN A, MELCHERS K G, LIEVENS F, et al.Situation assessment as an ignored factor in the behavioral consistency paradigm underlying the validity of personnel selection procedures ［J］. Journal of Applied Psychology, 2013, 98(2): 326-328.

［4］ZHENHUA X. Demand-oriented traffic measuring method for network security situation assessment ［J］. Journal of Networks, 2014, 9(4):221-224.

［5］SHARMA C, KATE V. ICARFAD: a novel framework for improved network security situation awareness ［J］. International Journal of Computer Applications, 2014, 87(3):129-134.

［6］CAI B. Evaluation on network security situation based on analytical hierarchy process and information fusion ［C］//Proceedings of the 9th International Symposium on Linear Drives for Industry Applications. Berlin: Springer-Verlag, 2014: 619-626.

［7］BASS T. Multisensor data fusion for next generation distributed intrusion detection systems ［C］// INSD 1999: Proceedings of the 1999 IRIS National Symposium on Sensor and Data Fusion. New York: Communications of the ACM, 1999: 24-27.

［8］GORODETSKY V, KARSAEV O, SAMOILOV V. On-line update of situation assessment based on asynchronous data streams ［C］// KES 2004: Proceedings of the 8th International Conference on Knowledge-based Intelligent Information and Engineering Systems, LNCS 3213. Berlin: Springer-Verlag, 2004: 1136-1142.

［9］YUCEK T, ARSLAN H. A survey of spectrum sensing algorithms for cognitive radio applications ［J］. IEEE Communications Surveys & Tutorials, 2009, 11(1): 116-130.

［10］WEI Y, LIAN Y, FENG D. A network security situational awareness model based on information fusion ［J］. Journal of Computer Research and Development, 2009, 46(3): 353-362. (韦勇,连一峰,冯登国.基于信息融合的网络安全态势评估模型[J].计算机研究与发展,2009,46(3):353-362.)

［11］CHEN X, ZHENG Q, GUAN X, et al.A hierarchical network security threat situation of quantitative evaluation method ［J］. Journal of Software, 2006, 17(4): 885-897. (陈秀真,郑庆华,管晓宏,等.层次化网络安全威胁态势量化评估方法［J］.软件学报,2006,17(4):885-897.)

［12］MAMESSIER S, DREYER D, OBERHAUSER M. Calibration of online situation awareness assessment systems using virtual reality ［M］// DHM 2014: Proceedings of the 5th International Conference on Digital Human Modeling, Applications in Health, Safety, Ergonomics and Risk Management, LNCS 8529. Berlin: Springer-Verlag, 2014: 124-135.

［13］GUO L, LIU G, BAO Y. A study of FCM clustering algorithm based on interval multiple attribute information ［J］. Applied Mechanics and Materials, 2014, 444(3): 676-680.

［14］SHAO C. The implication of fuzzy comprehensive evaluation method in evaluating internal financial control of enterprise ［J］. International Business Research, 2009, 2(1): 210-213.

［15］WANG Z, JIA Y, LI A,et al.Network situational quantitative evaluation method based on fuzzy hierarchy analysis ［J］. Computer Security, 2011(1): 61-65. (王志平,贾焰,李爱平,等.基于模糊层次法的网络态势量化评估方法［J］.计算机安全,2011(1):61-65.)

［16］XIAO C, QIAO Y, HE H,et al.Multi-level fuzzy situation assessment model based on the best clustering criteria [J]. Application Research of Computers, 2013, 30(4): 1011-1014. (肖春景,乔永卫,贺怀清,等.基于最佳聚类准则的多级模糊态势评估方法[J].计算机应用研究,2013,30(4):1011-1014.)

［17］ZHANG X, TANG J, CHENG L. Development and application of online course evaluation system based on FAHP ［J］. Computer Technology and Development, 2012, 22(11): 193-196. (张秀琦,唐吉洪,程琳.基于FAHP的网络课程评价系统的开发与应用［J］. 计算机技术与发展,2012,22(11):193-196.)

［18］ZHANG J. The fuzzy analytic hierarchy process ［J］. Fuzzy Systems and Mathematics, 2000, 14(2): 80-88. (张吉军.模糊层次分析法［J］.模糊系统与数学,2000,14(2):80-88.)

[1]	ZONG Xuejun, HAN Bing, WANG Guogang, NING Bowei, HE Kan, LIAN Lian. TDRFuzzer: fuzzy testing method for industrial control protocols based on adaptive dynamic interval strategy [J]. Journal of Computer Applications, 0, (): 0-0.
[2]	Ming ZHANG, Le FU, Haifeng WANG. Relay control model for concurrent data flow in edge computing [J]. Journal of Computer Applications, 2024, 44(12): 3876-3883.
[3]	. Survey of DNS tunneling detection technology research [J]. Journal of Computer Applications, 0, (): 0-0.
[4]	. Large scale IoT binary component identification based on named entity recognition [J]. Journal of Computer Applications, 0, (): 0-0.
[5]	Yixi LIU, Jun HE, Bo WU, Bingtong LIU, Ziyu LI. Survey of software security testing techniques in DevSecOps [J]. Journal of Computer Applications, 2024, 44(11): 3470-3478.
[6]	Chuanlin PANG, Rui TANG, Ruizhi ZHANG, Chuan LIU, Jia LIU, Shibo YUE. Distributed power allocation algorithm based on graph convolutional network for D2D communication systems [J]. Journal of Computer Applications, 2024, 44(9): 2855-2862.
[7]	Jiepo FANG, Chongben TAO. Hybrid internet of vehicles intrusion detection system for zero-day attacks [J]. Journal of Computer Applications, 2024, 44(9): 2763-2769.
[8]	ZHANG Yiming, CAO Tengfei. Federated Learning Optimization Algorithm based on Local Drift and Diversity Computing Power [J]. Journal of Computer Applications, 0, (): 0-0.
[9]	Hang XU, Zhi YANG, Xingyuan CHEN, Bing HAN, Xuehui DU. Coverage-guided fuzzing based on adaptive sensitive region mutation [J]. Journal of Computer Applications, 2024, 44(8): 2528-2535.
[10]	Hong CHEN, Bing QI, Haibo JIN, Cong WU, Li’ang ZHANG. Class-imbalanced traffic abnormal detection based on 1D-CNN and BiGRU [J]. Journal of Computer Applications, 2024, 44(8): 2493-2499.
[11]	GENG Haijun, DONG Yun, HU Zhiguo, CHI Haotian, YANG Jing, YIN Xia. Encrypted traffic classification method based on Attention-1DCNN-CE#br# #br# [J]. Journal of Computer Applications, 0, (): 0-0.
[12]	. Summary of network intrusion detection systems based on deep learning [J]. Journal of Computer Applications, 0, (): 0-0.
[13]	CHEN Ruilong, HU Tao, BU Youjun, YI Peng, HU Xianjun, QIAO Wei. Stacking ensemble adversarial defense method for encrypted malicious traffic detection model [J]. Journal of Computer Applications, 0, (): 0-0.
[14]	Zhongdai WU, Dezhi HAN, Haibao JIANG, Cheng FENG, Bing HAN, Chongqing CHEN. Review of marine ship communication cybersecurity [J]. Journal of Computer Applications, 2024, 44(7): 2123-2136.
[15]	Zihao YAO, Yuanming LI, Ziqiang MA, Yang LI, Lianggen WEI. Multi-object cache side-channel attack detection model based on machine learning [J]. Journal of Computer Applications, 2024, 44(6): 1862-1871.

Improved network security situational assessment method based on FAHP

基于模糊层次法的改进型网络安全态势评估方法

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics