摘要
随着互联网的迅猛发展,其规模不断扩大、应用更加广泛,许多部门和企业的关键业务活动越来越多地依赖于网络,各种网络攻击、信息安全事件发生率在不断攀升。态势感知与APT逐渐成为网络热词。文章阐述了一种基于大数据的网络空间安全态势感知数据收集的实现方法。结合网络流量分析方法,进行网络空间态势感知分析,产生可持续、即时性强的网络安全数据,实时分析感知网络攻击行为。并且通过可视化手段,为网络安全实施感知以及未来趋势、决策研判提供有力手段。文章着重介绍网络空间安全态势感知系统数据收集方式,并说明APT检测技术在网络空间安全态势感知系统中的应用与实现,将二者相结合,提供一种新的态势感知数据构建思路。
With the rapid development of the Internet, which have been expanding and becoming more widely today. Many departments and companys activities are increasingly rely on the network with their critical activities .It causes the rising rates of a variety of network attacks and information security event . Situational awareness and APT gradually become hot network words. This paper mainly describes a web-based space security situation o f Big Data and aware implementation of data collection. Combined with network traffic analysis to search network analysis space situational awareness to find out generate sustainable and real strong network security data.At the same time make real-time analysis of network attacks. And by visual means, provided great network security implementation perceived future trends,also provided a powerful tool for decision making judgments. In this article, we focus on cyberspace security situational awareness system to collect data,prove and shows APT detection technology in cyberspace security situational awareness application and implementation of the system, will be a combination of both things, provide a situational awareness data to build new ideas.
出处
《信息网络安全》
2016年第9期202-207,共6页
Netinfo Security
