摘要
笔者提出了基于本体自适应情景感知系统为核心的智能安全防护体系通用框架。通过将新的通用框架应用于资产安全防护中,如命令执行漏洞的自动发现和防护,可实时感知网络安全状况,实现对科技资产漏洞风险的实时评估,并及时发现网络中针对科技资产攻击的异常事件,缩短了阻断响应的时间,提高了防护效率,并降低漏洞攻击的误报率,降低了网络阻塞的风险。
In this paper, We propose a common intelligent security protection system framework which is based on an ontologybased adaptive context-aware system. We apply the new common framework to the asset security protection, to verify our proposition.In this scenario,our common intelligent security protection system framework can realize automatically discovery and protection of command execution vulnerabilities, perceive the security status of the network and make assessment of the risk of technology asset vulnerabilities and discover the abnormal attack events for the technology asset in the cyberspace in real-time.It can shorten the response time to block the attack, improve the protection efficiency, reduce the false alarm rate of the vulnerability attack and the risk of network congestion.
引文
[1]张瑜,潘小明,曹均阔,等.APT攻击与防御[J].清华大学学报(自然科学版),2017,57(11):1127-1133.
[2]顾君忠.情景感知计算[J].华东师范大学学报(自然科学版),2009,2009(5):1-20.
[3]Chandrasekaran B,Josephson J R,Benjamins V R.What are ontologies,and Why Do We Need Them?[J].IEEE Intelligent Systems,1999,14(1):20-26.
[4]Studer R.Knowledge engineering:Principles and Methods[J].Data&Knowledge Engineering,2008,25(1-2):161-197.
[5]Hill E F.Jess in Action:Java Rule-Based Systems[M].Greenwich:Manning Publications Co.,2003:263.
[6]Mowafi Y,Aboutair D,Alaqarbeh T,et al.A Context-aware Adaptive Security Framework for Mobile Applications[C]//International Workshop on Pervasive&Context-aware Middleware,2015:364.
[7]Kristian F S K.Modelling Security Relevant Context An approach towards Adaptive Security in Volatile Mobile Web Environments[J].2011(2011):1-3.
[8]Shen H B,Cheng Y.A Context-Aware Semantic-Based Access Control Model for Mobile Web Services[J].Communications in Computer&Information Science,2011(153):132-139.