基于自更新威胁情报库的大数据安全分析方法

doi:10.11959/j.issn.1000-0801.2018127

Telecommunications Science ›› 2018, Vol. 34 ›› Issue (3): 50-58.doi: 10.11959/j.issn.1000-0801.2018127

• Topic:Cyberspace Security • Previous Articles Next Articles

Big data security analysis method based on self-update threat intelligence database

Yanfang HOU,Jinhua WANG

Mobile Internet System and Application Security National Engineering Laboratory,Shanghai201315,China

Revised:2018-03-09 Online:2018-03-01 Published:2018-04-02

Abstract

Abstract:

Big data security analysis method is generally based on the existing signature database to detect and match malicious behaviors.This method can only detect known attacks and can't analyze and judge new types of unknown attacks and complex variant attacks.Through the big data analysis technology,the collected data was extracted for safety value,and the value conversion from the collected data,threat information,threat knowledge to threat intelligence was realized,high-value threat intelligence of forming hidden,value selective,adversarial,predictive,and decision-making,evidence-based,time-sensitive was formed.Firstly,the limitations of the existing security analysis methods were analyzed.Then the construction method of threat intelligence database was introduced in detail.Finally,the security analysis method of big data based on self-renewing threat information database was described.The analysis of big data security based on the self-updated threat intelligence database could mine the hidden threats in internet data effectively and strengthen the existing security protection capabilities of internet companies so that the preemptive defense initiative could be mastered during the security game.

Key words: threat intelligence database, big data analysis, threat information, threat knowledge, self-update

CLC Number:

TP393

Yanfang HOU,Jinhua WANG. Big data security analysis method based on self-update threat intelligence database[J]. Telecommunications Science, 2018, 34(3): 50-58.

Figures/Tables 4

References 6

[1]	张繁，谢凡，江颉 . 网络威胁安全数据可视化综述[J]. 网络与信息安全学报， 2018,4(2):34-39.
	ZHANG F , XIE F , JIANG X . Survey on the visualization technologies of threatening security data in cyber space[J]. Chinese Journal of Network and Information Security, 2018,4(2):34-39.
[2]	方滨兴 . 定义网络空间安全[J]. 网络与信息安全学报， 2018,4(1):1-5.
	FANG B X . cyberspace security[J]. Chinese Journal of Network and Information Security, 2018,4(1):1-5.
[3]	ISLAM J , XU K , WONG W . Analytic provenance for criminal intelligence analysis[J]. Chinese Journal of Network and Information Security, 2018,4(2):18-33.
[4]	MITNICK K D , SIMON W L . 欺骗的艺术[M]. 潘爱民，译. 北京：清华大学出版社 2014.
	MITNICK K D , SIMON W L . The art of deception[M].Translated by PAN A M. Beijing: Tsinghua University Press 2014.
[5]	张云勇 . 电信运营商大数据发展建议[J]. 电信科学， 2018,34(1):103-108.
	ZHANG Y Y . Suggestions for telecom operators' big data development[J]. Telecommunications Science, 2018,34(1):103-108.
[6]	Gartner . 威胁情报的定义[EB/OL]. (2013-05-16).[2018-01-08]. .
	Gartner . Gartner.Definition:threat intelligence[EB/OL]. (2013-05-16).[2018-01-08]. .

Metrics

Recommended 0

No Suggested Reading articles found!

Big data security analysis method based on self-update threat intelligence database

RichHTML

PDF下载

Knowledge

Abstract

Cite this article

share this article

Figures/Tables 4

References 6

Related Articles 4

Metrics

Recommended 0

[1]	Hongyong YU,Chenxu QIU,Jianfeng WEN. IPTV video personalized recommendation system [J]. Telecommunications Science, 2017, 33(12): 127-135.
[2]	Peng Han. Operation Management Mode Based on New Media Technology [J]. Telecommunications Science, 2015, 31(7): 29-33.
[3]	Sen Chen,Chao Chen,Xiaoyong Zhang,Lei Wang,Peng Sun. Evaluation System of Mobile Internet User Experience Based on Big Data Analysis [J]. Telecommunications Science, 2015, 31(4): 147-154.
[4]	Xianghui Xu,Yuan Zhang,Feng Yang. Construction and Analysis of Intelligent Perceive Ability in IP Network [J]. Telecommunications Science, 2015, 31(12): 164-167.