面向网络安全防御防护的大数据平台架构研究

面向网络安全防御防护的大数据平台架构研究 认领
A Study of Big Data Platform Architecture to Address Cybersecurity Protection and Defense
在线阅读 下载PDF收藏分享导出
摘要近年来,日益严峻的网络安全形势对信息系统的网络安全防御防护能力提出了更高的要求.大量且多样的网络数据使得网络攻击的态势感知、应急处置等防御环节面临挑战.因此,网络安全技术以及网络安全架构设计也应在此趋势下作出及时和持续的改进.通过对网络安全防御防护能力和大数据技术的研究,提出了以态势感知、应急处置决策支持和网络安全系统智能优化为主的网络安全大数据平台功能需求,并设计了平台的技术架构.基于该架构建设的网络安全大数据平台可以提高网络威胁态势感知的前瞻性和准确性、网络事件应急处置的实时性和有效性、网络安全体系架构的前沿性和全面性以及架构优化调整的及时性.
In recent years,the increasingly severe cybersecurity situation has put forward higher requirements for the cybersecurity defense and protection capabilities of information systems.The network flows and data with high volume and large variety bring even more issues to the information system protection in terms of cybersecurity situation awareness,crisis handling,etc.Thus,the cybersecurity technology and the information system architecture should have timely and continuous improvement in order to deal with situation changes.By analyzing the cybersecurity abilities of an information system and the big data technologies,this study proposes 3 main features of a big data platform for cybersecurity concerns:cybersecurity situation awareness,decision support for handling cybersecurity crises and cybersecurity system optimization,and therefore provides the technical architecture of the platform that aims at addressing cybersecurity protection and defense.A big data platform based on the proposed architecture can improve the foresight and the accuracy of the situation awareness,ensure the real-time performance and the effectiveness of the crisis handling and guarantee the technological advancement and the versatility of the information system architecture towards cybersecurity considering the timeliness in its optimization.
作者王逸鹤 黄亦芃
Wang Yihe;Huang Yipeng(Research Section of Cybersecurity,Department of Computer Technology Application,China Institute of Nuclear Industry Strategy,Beijing 100048;School of Softivare,Tsinghua University,Beijing 100084)
机构地区中核战略规划研究总院有限公司计算机所网络安全研究室 清华大学软件学院
出处《信息安全研究》 2021年第1期75-80,共6页
Journal of Information Security Research
关键词网络安全 大数据 态势感知 应急处置 决策支持 系统优化
cybersecurity big data situation awareness crisis handling decision support system optimization
分类号TP393.08 [自动化与计算机技术—计算机应用技术]
相关文献
1邵高峰,刘全超,何中华,陈昉.民用建筑“四节一环保”实时数据仓库架构研究[J].建筑科学,2020(S02):378-381.
2史万庆.基于改进粒子群算法的网络安全防御方法[J].电子技术与软件工程,2020(20):249-250.
3曹玥.基于数据挖掘的网络安全运行防御系统[J].信息与电脑,2020,32(22):202-203.