Network security situation awareness based on intercepting the threat spread

Author

Bo Zhou ; Lin-fei Zhong

Author_Institution

Coll. of Inf. Sci. & Technol., Jiujiang Univ., Jiujiang, China

fYear

2013

fDate

12-13 Oct. 2013

Firstpage

876

Lastpage

879

Abstract

To increase the security of network system, we propose a network security situation awareness method based on intercepting the threat spread. This method firstly merges security data from different sensors to get the normalization data of network nodes, threats and vulnerability. And secondly, the method intercepts the threat spread by the normalization data. Finally, the method constructs the game analysis among the attacker, defender and neutral. Then the system manager can reinforce the most vulnerable node in real time according to the analysis. Experiment results show that our method can stably improve the security performance of the network system with the system continuously running.

Keywords

computer crime; ubiquitous computing; attacker; defender; game analysis; network nodes; network security situation awareness method; network system security; network threats; network vulnerability; normalization data; security data; security performance; sensors; threat spread; vulnerable node; Communication networks; Educational institutions; Games; Hidden Markov models; Predictive models; Real-time systems; Security; Intercepting spread; Network security; Situation awareness; Threat spread;

fLanguage

English

Publisher

ieee

Conference_Titel

Computer Science and Network Technology (ICCSNT), 2013 3rd International Conference on

Conference_Location

Dalian

Type

conf

DOI

10.1109/ICCSNT.2013.6967245

Filename

6967245