摘要
端信息跳变是目前主动网络防御领域的研究热点之一。该文构建了固定策略下的定时隙端信息跳变模型,分析了固定跳变周期引起的防御收益下降和跳变边界数据包丢失造成的服务损失问题。提出了基于非广延熵和Sibson熵融合的实时网络异常度量算法,在此基础上设计了端信息跳变周期和跳变空间自调整策略,构建了主动网络防御模型,提高了防御收益。给出了基于网络时延预测的跳变周期拉伸策略,保证了跳变边界的服务质量。理论分析与仿真实验结果表明了所提模型在网络防御中的有效性和良好的服务性。
End hopping technology is one of the hot research domains in the field of proactive network defense. An end hopping model based on fixed time slot under the fixed policy is established. The defense gains decline caused by fixed hopping period and the service loss caused by data packet loss on hopping boundary are analyzed. The real-time network anomaly assessment algorithm based on the fusion of nonextensive entropy and Sibson entropy is proposed. Then, the selfadaptive end hopping period and space policy based on the proposed algorithm are designed and the proactive network defense model is constructed which improves the defense gains. Furthermore, Hopping period stretching policy based on network delay prediction is proposed to ensure the service quality on hopping boundary. Theoretical analysis and simulation results show the effectiveness and good service of the proposed model in network defense.
出处
《电子与信息学报》
EI
CSCD
北大核心
2015年第11期2642-2649,共8页
Journal of Electronics & Information Technology
基金
国家863计划项目(2012AA012704)
郑州市科技领军人才项目(131PLJR644)~~
关键词
主动网络防御
端信息跳变
自适应调整
Proactive network defense
End hopping
Selfadaptive adjustment
作者简介
刘江:男,1988年生,博士生,研究方向为网络动态目标防御、安全策略管理.通信作者:刘江liujiang2333@163.com
张红旗:男,1962年生,教授,博士生导师,研究方向为网络信息安全、安全管理.
代向东:男,1977年生,硕士,讲师,研究方向为网络安全策略管理.
王义功:男,1987年生,硕士,讲师,研究方向为网络安全策略管理.
