天津理工大学学报
天津理工大學學報
천진리공대학학보
JOURNAL OF TIANJIN UNIVERSITY OF TECHNOLOGY
2015年
2期
38-42
,共5页
Flume%信息熵%可视化
Flume%信息熵%可視化
Flume%신식적%가시화
Flume%comentropy%visualization
随着互联网使用者的快速增长,网络安全问题也不断增多。传统的基于日志的入侵检测系统在处理海量信息时存在着实时性不足,认知负担过重等缺点。本文提出了一种基于Flume的网络安全日志可视化方法,利用Flume处理日志信息的高效性,实时收集网络安全日志,结合数据可视化方法,挖掘隐藏的网络异常信息。与传统的基于数据库存储的安全分析相比,提高了数据处理的实时性,能够更直观的展现网络网络异常。
隨著互聯網使用者的快速增長,網絡安全問題也不斷增多。傳統的基于日誌的入侵檢測繫統在處理海量信息時存在著實時性不足,認知負擔過重等缺點。本文提齣瞭一種基于Flume的網絡安全日誌可視化方法,利用Flume處理日誌信息的高效性,實時收集網絡安全日誌,結閤數據可視化方法,挖掘隱藏的網絡異常信息。與傳統的基于數據庫存儲的安全分析相比,提高瞭數據處理的實時性,能夠更直觀的展現網絡網絡異常。
수착호련망사용자적쾌속증장,망락안전문제야불단증다。전통적기우일지적입침검측계통재처리해량신식시존재착실시성불족,인지부담과중등결점。본문제출료일충기우Flume적망락안전일지가시화방법,이용Flume처리일지신식적고효성,실시수집망락안전일지,결합수거가시화방법,알굴은장적망락이상신식。여전통적기우수거고존저적안전분석상비,제고료수거처리적실시성,능구경직관적전현망락망락이상。
With the rapid growth of Internet users, the network security issues grows accordingly. Traditional intrusion detection system based on log has defects such as real-time insufficiency and cognition burden in dealing with huge amounts of information.This paper proposed one visualization method of network security log based on the Flume, Which collected network security log in real-time by using the efficiency of Flume and combined with data visualization technology to digest the hidden information of unexpected network. Compared with traditional safety analysis based on database storage, the real-time of data processing can be largely improved, and the unexpected network can be presented more visually.