摘要
攻击意图是攻击者通过执行各种入侵手段和技术试图实现的最终目的.随着攻击技术不断发展,结合入侵检测系统的情报对复杂攻击意图进行识别,提前做出反应避免事态进一步恶化的防御技术越发重要.本文跟踪了近年来在网络攻击意图识别领域的技术发展,简析几种代表性方法的核心思想,讨论其优缺点,并结合安全领域热门的新兴技术提出了几种新的攻击意图识别研究思路,最后总结并展望了该领域的发展趋势.
Attack intention is the ultimate attack goal that the attacker attempts to achieve by executing various intrusion methods or tech-niques.It is increasingly important to combine the intelligence of the intrusion detection system to identify complex attack inten-tions and to react in advance to avoid further deterioration of the situation. This paper traced the development of technology of this field,analyzed the core ideas of several representative methods, discussed their advantages and disadvantages. In combina-tion with the emerging technologies in the security field,several new ideas on attack intent identification were proposed.Finally,this paper summarized and forecasted the development trend in this field.
作者
黄龙
王春东
HUANG Long;WANG Chun-dong(School of Computer Science and Engineering,Tianjin University of Technology,Tianjin 300384,China)
出处
《天津理工大学学报》
2020年第2期16-20,共5页
Journal of Tianjin University of Technology
基金
国家自然基金联合基金(No.U1536122)
天津市科委面上项目(15JCYBJC15600)
天津市科委重大专项(15ZXDSGX00030).
关键词
信息安全
入侵检测
网络攻击
意图识别
information security
intrusion detection
network attack
intention recognition
作者简介
黄龙(1994-),男,硕士研究生,E-mail:271096202@qq.com;通讯作者:王春东(1969-),男,教授,硕士研究生,E-mail:michael3769@163.com。
