摘要
新型网络环境下,传统的网络态势评估方法已经不能有效地评估分布式拒绝服务攻击DDoS的安全态势。提出了基于改进模糊C-均值FCM聚类的DDoS攻击的安全态势评估模型。该模型根据新老用户网络流IP地址状态变化和单双向网络流的融合特征,计算出网络系统各节点的风险指标,通过汇聚网络中各个节点的风险指标生成整个网络的安全态势信息,再用改进的模糊C-均值聚类算法将融合的安全态势信息分为五个安全等级,最后采用风险等级识别模型对整个网络的DDoS攻击安全态势进行定量评估。实验结果表明,该模型能够合理有效地评估DDoS攻击的安全态势,比现有的评估方法更准确灵活。
Traditional network situation assessment methods cannot effectively evaluate the distribu ted denial of service (DDoS) attack security situation in the new network environment. We propose a DDoS attack security situation assessment model based on improved fuzzy C means (FCM) clustering. This model generates a fusion feature gained from network flow IP address changes of old and new users and unilateral and bilateral network flow, and calculates the risk indexes of each network node on the basis of the fusion feature. The security situation information of the whole network can be obtained by fusing the risk indexes of all the nodes in the network, which is then classified into five security levels by the improved FCM. The DDoS attack security situation of the whole network therefore can be quantita tively evaluated by the proposed model. Experiments on real DDoS data show that the proposed model can assess the DDoS attack security situation reasonably and effectively, and it is more flexible and accu rate than existing methods.
作者
张瑞芝
唐湘滟
程杰仁
ZHANG Rui-zhi;TANG Xiang-yan;CHENG Jie-ten(School of Information Science and Technology,Hainan University,Haikou 570228;State Key Laboratory of Marine Resource Utilization in South China Sea,Haikou 570228,China)
出处
《计算机工程与科学》
CSCD
北大核心
2018年第11期1957-1966,共10页
Computer Engineering & Science
基金
海南省自然科学基金(617048
2018CXTD333)
国家自然科学基金(61762033
61702539)
湖南省自然科学基金(2018JJ3611)
浙江省公益技术应用社会发展项目(LGF18F020019)
海南大学博士启动基金(kyqd1328)
海南大学青年基金(qnjj1444)
南海海洋资源利用国家重点实验室资助
关键词
分布式拒绝服务
安全态势评估
模糊C-均值
风险评估
distributed denial of service (DDoS)
security situation assessment
fuzzy C -means(FCM)
risk assessment
作者简介
通信地址:570228海南省海口市美兰区海南大学信息科学技术学院,张瑞芝(1994-),女,山西永济人,硕士生,研究方向为人工智能、网络安全和深度学习。E—mail:763418301@qq.com.;通信作者:唐湘滟(1981-),女,湖南邵阳人,硕士,讲师,研究方向为人工智能、网络安全和智能交通。唐湘滟(tangxy36@163.com).;程杰仁(1974-),男,湖南郴州人,博士,教授,CCF会员(40279M),研究方向为云计算、人工智能、网络安全和智能交通。E—mail:cjr22@163.com
