科技通报
科技通報
과기통보
BULLETIN OF SCIENCE AND TECHNOLOGY
2013年
10期
39-41
,共3页
相交擦除痕迹%恶意攻击%网络取证%贝叶斯报警网络
相交抆除痕跡%噁意攻擊%網絡取證%貝葉斯報警網絡
상교찰제흔적%악의공격%망락취증%패협사보경망락
intersection wipe traces%malicious attacks%network forensics%bayesian network alarm
提出了一种基于擦除痕迹追踪的网络恶意攻击取证技术,分析攻击擦除痕迹的相交性作为取证方案,依据网络恶意攻击的相交擦除痕迹构建贝叶斯报警网络,对恶意攻击进一步取证,并通过网络恶意攻击检测模型分析网络受到的恶意攻击状态,实现大规模网络恶意攻击擦除后的取证。实验结果表明,该方案具有良好的实践性,能够对网络恶意攻击进行准确地取证,具有较高的报警率和较低的误报率,取得了令人满意的结果。
提齣瞭一種基于抆除痕跡追蹤的網絡噁意攻擊取證技術,分析攻擊抆除痕跡的相交性作為取證方案,依據網絡噁意攻擊的相交抆除痕跡構建貝葉斯報警網絡,對噁意攻擊進一步取證,併通過網絡噁意攻擊檢測模型分析網絡受到的噁意攻擊狀態,實現大規模網絡噁意攻擊抆除後的取證。實驗結果錶明,該方案具有良好的實踐性,能夠對網絡噁意攻擊進行準確地取證,具有較高的報警率和較低的誤報率,取得瞭令人滿意的結果。
제출료일충기우찰제흔적추종적망락악의공격취증기술,분석공격찰제흔적적상교성작위취증방안,의거망락악의공격적상교찰제흔적구건패협사보경망락,대악의공격진일보취증,병통과망락악의공격검측모형분석망락수도적악의공격상태,실현대규모망락악의공격찰제후적취증。실험결과표명,해방안구유량호적실천성,능구대망락악의공격진행준학지취증,구유교고적보경솔화교저적오보솔,취득료령인만의적결과。
proposes a malicious attacks based on intersection wipe traces of network forensics technology, analysis of pre-liminary evidence collection scheme based on intersection wipe traces, malicious attack based on network intersection wipe traces constructing bayesian alerting network, further evidence to malicious attack, and through the cloud computing network malicious network attack detection model analysis of malicious attacks, realize the cloud computing network ma-licious attack detection. The experimental results show that the scheme has good practicality, can carry on the accurate evidence to the network of malicious attacks, has the high alarm rate and lower false alarm rate, and achieved satisfactory results.
