An Evaluation Method of Network Security Situation using Data Fusion Theory

doi:10.23940/ijpe.20.07.p7.10461057

Int J Performability Eng ›› 2020, Vol. 16 ›› Issue (7): 1046-1057.doi: 10.23940/ijpe.20.07.p7.10461057

Previous Articles Next Articles

An Evaluation Method of Network Security Situation using Data Fusion Theory

Zhongwei Zhao^a, Yong Peng^b, Jianhua Huang^b, Tingting Zhou^c,*, and Huan Wang^b

^aSchool of Special Education of Changchun University, 6543 Weixing Road, Changchun, 130022, China;
^bGuangxi University of Science and Technology, 268 Avenue Donghuan, Liuzhou, 545006, China;
^cAffiliated Hospital of Changchun University of Chinese Medicine, 1478 Gongneng Road, Changchun, 130000, China

Submitted on ; Revised on ; Accepted on
Contact: * E-mail address: 26460109@qq.com
About author:Zhongwei Zhao received his master's degree from Changchun University of Chinese Medicine. He is currently an associate professor in the School of Special Education at Changchun University. His research interest includes TCM informatization and medical aids. Yong Peng received his B.S. degree in industrial automation from Guangxi University of Technology and his M.S. degree in software engineering from Beijing University of Technology. He is currently an engineer in the College of Computer Science and Communication Engineering at Guangxi University of Science and Technology. His research interests include computer network and information security. Jianhua Huang received his B.S. degree in mathematics and applied mathematics from Yuxi Normal University in 2007 and his M.S. degree in computational mathematics from Yunnan University. He has been an engineer in the College of Computer Science and Communication Engineering at Guangxi University of Science and Technology since 2010. His research interests include information fusion and information security. Tingting Zhou received her bachelor's degree from Jilin University in 2009. She is currently a supervisor in the Affiliated Hospital at Changchun University Of Chinese Medicine. Her research interest includes TCM informatization and medical aids. Huan Wang received his B.S., M.S., and Ph.D. degrees in computer science and technology from Changchun University of Science and Technology in 2009, 2012, and 2017, respectively. From 2012 to 2019, he was a lecturer in the College of Computer Science and Technology at Changchun University of Science and Technology. Since 2019, he has been an associate researcher in the School of Computer Science and Communications Engineering at Guangxi University of Science and Technology. His research interest includes network and information security and high reliability software.

Abstract

Abstract: Network security situation awareness can effectively grasp the macro-security situation of the network, but the evaluation process still face problems such as single data source and big accuracy deviation. Therefore, this paper proposes a network security situation awareness model and method based on D-S theory. Using PCA clustering, the model preprocesses alarm information and eliminates useless alarm information to reduce time costs in evaluation. Based on improved D-S evidence theory, multi-source alarm data fusion rules are established to improve accuracy in event detection. Three situation awareness indicators of vulnerability, threat, and asset importance are set up to quantify the situation indicators and form an intuitive situation display. The experimental comparison analysis indicates that the model proposed herein can accurately assess the network security situation.

Key words: data fusion, security events, situation awareness

Zhongwei Zhao, Yong Peng, Jianhua Huang, Tingting Zhou, and Huan Wang. An Evaluation Method of Network Security Situation using Data Fusion Theory [J]. Int J Performability Eng, 2020, 16(7): 1046-1057.

Add to citation manager EndNote|Reference Manager|ProCite|BibTeX|RefWorks

References

1. Y. Lin, C. Wang, C. G. Ma, Z. Dou,X. F. Ma, “A New Combination Method for Multisensor Conflict Information,” The Journal of Supercomputing, Vol. 72, No.7, pp. 2874-2890, 2016
2. Y. Tu, Y. Lin, J. Wang,J. U. Kim, “Semi-Supervised Learning with Generative Adversarial Networks on Digital Signal Modulation Classification,” CMC-Computers Materials and Continua, Vol. 55, No. 2, pp. 243-254, 2019
3. H. Wang, Z. F. Chen, X. Feng, X. Q. Di, D. Liu, J. P. Zhao, et al., “Research on Network Security Situation Assessment and Quantification Method based on Analytic Hierarchy Process,” Wireless Personal Communications, Vol. 102, No. 2, pp. 1401-1420, 2018
4. E. Ramasso and T. Denoeux, “Making Use of Partial Knowledge about Hidden States in HMMS: An Approach based on Belief Functions,” IEEE Transactions on Fuzzy System, Vol. 22, No. 2, pp. 395-405, 2014
5. X. Y. Zhu, “Computer Network Vulnerability Assessment and Safety Evaluation Application based on Bayesian Theory,” International Journal of Security and its Applications, Vol. 10, No. 12, pp. 359-368, 2016
6. Y. X. Luo, M. H. Zhao, Q. Y. Zhang,A. J. Zou, “Network Security Situation Awareness Model-Inspired by Immune,”Advanced Materials Research, Vol. 267, pp. 635-638, 2011
7. R. Z.Fan and M. K. Zhou, “Network Security Awareness and Tracking Method by GT,” Journal of Computational Information Systems, Vol. 9, No. 3, pp. 1043-1050, 2013
8. H. Wang, Z. F. Chen, J. P. Zhao, X. Q. Di,D. Liu, “A Vulnerability Assessment Method in Industrial Internet of Things based on Attack Graph and Maximum Flow,”IEEE Access, Vol. 6, pp. 8599-8609, 2018
9. X. Z. Wang, “Network Information Security Situation Assessment based on Bayesian Network,”International Journal of Security and its Applications, Vol. 5, pp. 129-138, 2016
10. Y. Wang, “Research on Network Security Situation Prediction based on Markov Game Theory,”International Journal of Security and its Applications, Vol. 9, pp. 301-308, 2016
11. K. Wu and Z. Y. Bai, “Trusted Network Security Situational Awareness and Forecast based on SPA,” Journal of Harbin Institute of Technology, Vol. 44, No. 3, pp. 112-118, 2012
12. S. Y.Wu and X. G. Tian, “Method for Anomaly Detection of User Behaviors based on Hidden Markov Models,” Journal on Communications, Vol. 28, No. 4, pp. 38-43, 2007

[1]	Tian Wang, Yunbo Shi, Wolfram Hardt, Qiaohua Feng, and Lingui Kang. Heart Sound Acquisition with ECM Sensor Array and Array Data Fusion Algorithm [J]. Int J Performability Eng, 2020, 16(3): 383-391.
[2]	Yuwei Wang and Hailin Feng . Reliability Analysis based on Inverse Gauss Degradation Process and Evidence Theory [J]. Int J Performability Eng, 2019, 15(2): 353-361.
[3]	Xiaojuan Zhang, Feng Zhang, Yongheng Zhang, and Xiaoyan Ai. Water Saving Irrigation Decision-Making Method based on Big Data Fusion [J]. Int J Performability Eng, 2019, 15(11): 2916-2926.
[4]	Ning Zhang, Peng Chen, Kai He, Zhao Li, and Xiaosheng Yu. Using Non-Subjective Approximation Algorithm of D-S Evidence Theory for Improving Data Fusion [J]. Int J Performability Eng, 2019, 15(10): 2692-2700.
[5]	Lishuang Zhao. Data Aggregation in WSN based on Deep Self-Encoder [J]. Int J Performability Eng, 2018, 14(11): 2723-2730.

An Evaluation Method of Network Security Situation using Data Fusion Theory

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 5

Recommended 0