Research Article
Network Security Situational Awareness Model Based on Threat Intelligence
@INPROCEEDINGS{10.1007/978-3-030-89814-4_38, author={Hongbin Zhang and Yan Yin and Dongmei Zhao and Bin Liu and Hongbin Gao}, title={Network Security Situational Awareness Model Based on Threat Intelligence}, proceedings={Mobile Multimedia Communications. 14th EAI International Conference, Mobimedia 2021, Virtual Event, July 23-25, 2021, Proceedings}, proceedings_a={MOBIMEDIA}, year={2021}, month={11}, keywords={Situation awareness Threat intelligence Game theory Network security Nash equilibrium}, doi={10.1007/978-3-030-89814-4_38} }- Hongbin Zhang
Yan Yin
Dongmei Zhao
Bin Liu
Hongbin Gao
Year: 2021
Network Security Situational Awareness Model Based on Threat Intelligence
MOBIMEDIA
Springer
DOI: 10.1007/978-3-030-89814-4_38
Abstract
In order to deal with the problems that the increasing scale of the network in the real environment leads to the continuous high incidence of network attacks, the threat intelligence was applied to situational awareness, and the situational awareness model based on random game was constructed. Threat perception of the target system was performed by comparing the similarity between the exogenous threat intelligence and the internal security events of the system. At the same time, internal threat intelligence was generated based on the threat information inside the system. In this process, game theory was used to quantify the current network security situation of the system, evaluate the security status of the network. Finally, the prediction of the network security situation was realized. The experimental results show that the network security situation awareness method based on threat intelligence can reflect the changes in the network security situation and predict attack behaviors accurately.
