摘要
为提高网络信道的安全性,设计了基于可信密码模块的潜在攻击挖掘方法。首先建立可信密码模块,通过双重因素认证以及授权的方式初步度量网络信道中潜在的攻击行为;然后应用K-means算法聚类初步确定信道数据,并利用带修正条件的信息熵算法,对聚类后的网络信道数据执行时间序列排序、直方图统计分块以及信息熵求解操作,对比得到的攻击行为数据时间序列信息熵值与设定分解值,从而完成网络信道攻击行为深度挖掘。实验结果表明:该方法能够有效挖掘网络信道中的潜在攻击行为,且挖掘可靠性较好,警告正确率较高。
In order to improve the security of network channel,this study designs a potential attack mining method based on trusted cryptography module.Firstly,the trusted cryptography module is established to measure the potential attack behavior in network channel through two-factor authentication and authorization.Then,the K-means algorithm clustering is applied to primarily determine channel data,and by using information entropy algorithm with fixed condition,the clustering network channel data after the execution time sequence sorting,partitioned histogram statistics and information entropy are solved.Then,compared with the attack data time series information entropy value and setting decomposition,the network attack channel depth excavation is completed.Experiment results show that this method can effectively mine potential attacks in network channels,and the mining reliability and warning accuracy are high.
作者
申国霞
常鑫
SHEN Guo-xia;CHANG Xin(Lanzhou Vocational Technical College,Lanzhou 730070,China)
出处
《信息技术》
2023年第10期152-156,162,共6页
Information Technology
关键词
可信密码模块
网络信道
攻击挖掘
信息熵
时间序列排序
trusted cryptography module
network channel
attack mining
information entropy
time series sorting
