电信科学 ›› 2020, Vol. 36 ›› Issue (10): 37-45.doi: 10.11959/j.issn.1000-0801.2020282

• 专题:智能通信技术 • 上一篇    下一篇

信息网络内生恶意行为检测框架

涂哲,周华春,李坤,王玮琳   

  1. 北京交通大学,北京 100044
  • 修回日期:2020-10-10 出版日期:2020-10-20 发布日期:2020-11-07
  • 作者简介:涂哲(1994- ),男,北京交通大学博士生,主要研究方向为人工智能、空间网络、网络安全等|周华春(1965- ),男,博士,北京交通大学教授、博士生导师,主要研究方向为未来互联网体系架构、移动互联网、网络安全、空间网络等|李坤(1997- ),男,北京交通大学博士生,主要研究方向为空间网络、人工智能、网络安全等|王玮琳(1998- ),女,北京交通大学硕士生,主要研究方向为知识图谱、人工智能、网络安全
  • 基金资助:
    国家重点研发计划项目(2018YFA0701604);国家自然科学基金资助项目(61802014);国家高技术研究发展计划(“863”计划)基金资助项目(2015AA015702)

Endogenous detection framework of malicious behavior in information network

Zhe TU,Huachun ZHOU,Kun LI,Weilin WANG   

  1. Beijing Jiaotong University,Beijing 100044,China
  • Revised:2020-10-10 Online:2020-10-20 Published:2020-11-07
  • Supported by:
    The National Key Research and Development Program of China(2018YFA0701604);The National Natural Science Foundation of China(61802014);The National High Technology of China (863 Program)(2015AA015702)

摘要:

“内生安全”赋予信息网络自学习、自成长的能力,是构建可信智能通信网络不可或缺的重要组成部分。面向信息网络“内生安全”,提出了一种内生恶意行为检测框架,变被动防御为主动拦截。同时,对内生恶意行为检测框架中五大关键组件进行了建模分析,并对自学习、自成长的恶意行为检测机制进行了阐述。最后,搭建原型系统并进行了实验,实验结果表明了检测框架的可行性和有效性。

关键词: 信息网络, 内生安全, 恶意行为检测, 安全框架

Abstract:

“Endogenous security” gives the information network the ability of self-learning and self-growth,and it’s the important part of building a trusted intelligent communication network.“Endogenous security” was combined with malicious behavior detection,and an endogenous detection framework of malicious behavior with endogenous security capabilities was proposed.Passive defense was turned into active interception.In addition,the five key components in the endogenous detection framework were also modeled and analyzed,and explained the self-learning and self-growth malicious behavior detection mechanism.Finally,the deployment method of the prototype system was introduced.Preliminary test results show the proposed framework is feasible and effective.

Key words: information network, endogenous security, malicious behavior detection, security architecture

中图分类号: 

No Suggested Reading articles found!