基于网络安全知识图谱的天地一体化信息网络攻击研判框架

doi:10.11959/j.issn.2096-8930.2021031

Abstract

Abstract:

While realizing global coverage, random access, on-demand service, security and credibility, the space-integrated-ground information network(SGIN) is confronted with more complex and variable security threats.Compared with the internet, satellite network has a lot of diff erences, such as highly dynamic changes of topology, transfer protocol and data format.In terms of these questions, it was necessary to integrated the rule of satellite network attacks into the rules of APT attacks, developed the cybersecurity knowledge graph and the attack rules library to analyzed the attacks of the SGIN.The pattern of attack rules was expressed based on time-space data model, which was used to completed the attack chain when there were non-continuous missed data or false positives data.The attack analysis framework proposed in this paper could accurately perceived the security status of the SGIN in real time , and provided decision support for the SGIN.

Key words: space-integrated-ground information network, cybersecurity knowledge graph, attack rule library, attack analysis framework, attack chain completion

CLC Number:

TP393

Yulu QI, Rong JIANG, Xing RONG, Aiping LI. Attack Analysis Framework of Space-Integrated-Ground Information Network Based on Cybersecurity Knowledge Graph[J]. Space-Integrated-Ground Information Networks, 2021, 2(3): 57-65.

Figures/Tables 11

References 18

[1]	方滨兴 . 定义网络空间安全[J]. 网络与信息安全学报, 2018,4(1): 1-5.
	FANG B X . Define cyberspace security[J]. Chinese Journal of Network and Information Security, 2018,4(1): 1-5.
[2]	季新生, 梁浩, 扈红超 . 天地一体化信息网络安全防护技术的新思考[J]. 电信科学, 2017,33(12): 24-35.
	JI X S , LIANG H , HU H C . New thoughts on security technologies for space-ground integration information network[J]. Telecommunications Science, 2017,33(12): 24-35.
[3]	蒋盘林 . 反卫星电子攻击综述[J]. 通信对抗, 2016(2): 42-46.
	JIANG P L . Review of anti-satellite electronic attack[J]. Communication Countermeasures, 2016(2): 42-46.
[4]	李凤华, 殷丽华, 吴巍 ,等. 天地一体化信息网络安全保障技术研究进展及发展趋势[J]. 通信学报, 2016,37(11): 156-168.
	LI F H , YIN L H , WU W ,et al. Research status and development trends of security assurance for space-ground integration information network[J]. Journal on Communications, 2016,37(11): 156-168.
[5]	KIWIA D , DEHGHANTANHA A , CHOO K K R ,et al. A cyber kill chain based taxonomy of banking Trojans for evolutionary computational intelligence[J]. Journal of Computational Science, 2018,27: 394-409.
[6]	BRYANT B D , SAIEDIAN H . A novel kill-chain framework for remote security log analysis with SIEM software[J]. Computers ＆Security, 2017,67: 198-210.
[7]	漆桂林, 高桓, 吴天星 . 知识图谱研究进展[J]. 情报工程, 2017,3(1): 4-25.
	QI G L , GAO H , WU T X . The research advances of knowledge graph[J]. Technology Intelligence Engineering, 2017,3(1): 4-25.
[8]	PUJARA J , MIAO H , GETOOR L ,et al. Knowledge graph identification[M]// Advanced Information Systems Engineering. Berlin,Heidelberg: Springer Berlin Heidelberg, 2013: 542-557.
[9]	DETTMERS T , MINERVINI P , STENETORP P ,et al. Convolutional 2D knowledge graph embeddings[J]. arXiv:1707.01476v6. 2017.
[10]	WANG Z , ZHANG J , FENG J ,et al. Knowledge graph embedding by translating on hyperplanes[C]// Twenty-eighth Aaai Conference on Artificial Intelligence. AAAI Press, 2014.
[11]	王慧强, 赖积保, 朱亮 ,等. 网络态势感知系统研究综述[J]. 计算机科学, 2006,33(10): 5-10.
	WANG H Q , LAI J B , ZHU L ,et al. Survey of network situation awareness system[J]. Computer Science, 2006,33(10): 5-10.
[12]	FRANKE U , BRYNIELSSON J . Cyber situational awareness - A systematic review of the literature[J]. Computers ＆ Security, 2014(46): 18-31.
[13]	龚俭, 臧小东, 苏琪 ,等. 网络安全态势感知综述[J]. 软件学报, 2017,28(4): 1010-1026.
	GONG J , ZANG X D , SU Q ,et al. Survey of network security situation awareness[J]. Journal of Software, 2017,28(4): 10101026.
[14]	刘效武, 王慧强, 吕宏武 ,等. 网络安全态势认知融合感控模型[J]. 软件学报, 2016,27(8): 2099-2114.
	LIU X W , WANG H Q , LYU H W ,et al. Fusion-based cognitive awareness-control model for network security situation[J]. Journal of Software, 2016,27(8): 2099-2114.
[15]	SINGH M , BHANDARI P . Building a framework for network security situation awareness[C]// Proceedings of 2016 3rd International Conference on Computing for Sustainable Global Development(INDIACom). Piscataway:IEEE Press, 2016: 2578-2583.
[16]	XU G Q , CAO Y , REN Y Y ,et al. Network security situation awareness based on semantic ontology and user-defined rules for Internet of Things[J]. IEEE Access, 2017(5): 21046-21056.
[17]	JIA Y , QI Y L , SHANG H J ,et al. A practical approach to constructing a knowledge graph for cybersecurity[J]. Engineering, 2018,4(1): 53-60.
[18]	李琪, 张欣, 张平康 ,等. 基于Spark框架的CFSFDP改进算法[J]. 电子科技, 2019,32(5): 38-43,54.
	LI Q , ZHANG X , ZHANG P K ,et al. Improved CFSFDP algorithm based on spark framework[J]. Electronic Science and Technology, 2019,32(5): 38-43,54.

Metrics

Recommended 0

No Suggested Reading articles found!

情况	仿真攻击全部成功	仿真攻击部分成功
检测结果有连续缺失	<100%	<100%
检测结果有非连续缺失	100%	≤100%

情况	仿真攻击全部成功	仿真攻击部分成功
检测结果有连续缺失	66.7%	33.3%
检测结果有非连续缺失	100%	66.7%

Attack Analysis Framework of Space-Integrated-Ground Information Network Based on Cybersecurity Knowledge Graph

RichHTML

PDF下载

Knowledge

Abstract

Cite this article

share this article

Figures/Tables 11

References 18

Related Articles 15

Metrics

Recommended 0

[1]	Xinsheng JI, Kaizhi HUANG, Jiangxing WU, Yajun CHEN, Wei YOU. Endogenous Security for the Space-Integrated-Ground Information Network in 6G [J]. Space-Integrated-Ground Information Networks, 2023, 4(2): 2-12.
[2]	Hui XU, Shaohui SUN. Research on Network Architecture for the Space-Integrated-Ground Information Network in 6G [J]. Space-Integrated-Ground Information Networks, 2021, 2(4): 2-9.
[3]	Yaming Ban, Hao Zheng, Zhe Liu, Siyang Dong. Research on Key Technologies and Design of High-peed Transmission Protocol in Space-Integrated-Ground Information Network [J]. Space-Integrated-Ground Information Networks, 2021, 2(4): 84-92.
[4]	Jin CAO, Lilan CHEN, Ruhui MA, Hui LI, Fenghua LI. Research on Access and Handover Authentication Mechanism of SpaceIntegrated-Ground Information Network for Multi-Type Terminals [J]. Space-Integrated-Ground Information Networks, 2021, 2(3): 2-14.
[5]	Xiaoping SHI, Ruhui MA, Jin CAO, Hui LI, Lilan CHEN, Fenghua LI. Access and Handover Authentication in Intermittent Connection Scenario of Satellite Network [J]. Space-Integrated-Ground Information Networks, 2021, 2(3): 24-34.
[6]	Mengru LIU, Yulong FU, Jin CAO, Hui LI. A Non-interactive Key Exchange Scheme for Space-IntegratedGround Information Network Based on Blockchain [J]. Space-Integrated-Ground Information Networks, 2021, 2(3): 48-56.
[7]	Qingsong XUE, Xiaofeng WANG. User Behavior Traffi c Replay Technology for Space-IntegratedGround Information Network Based on Profi le Analyzing [J]. Space-Integrated-Ground Information Networks, 2021, 2(3): 66-75.
[8]	Yazheng CHEN, Hewu LI. Research on Stateless Address Auto-Confi guration and Duplicate Address Detection in Space-Integrated-Ground Information Network [J]. Space-Integrated-Ground Information Networks, 2021, 2(2): 28-34.
[9]	Shanghong ZHAO, Cong PENG, Yongjun LI, Hai LI. Research on Optical/Electric Hybrid Switching Technique for Space-Integrated-Ground Information Network [J]. Space-Integrated-Ground Information Networks, 2021, 2(2): 46-52.
[10]	Mi LI, Qiang CHEN, Cheng ZENG, Xue WANG, Yisi WANG, Xiangfei CHEN. Effect of Optical Signal Beam Shift on the Performance of Satellite Chaos Laser Safety Communication System under Space-Integrated-Ground Information Network [J]. Space-Integrated-Ground Information Networks, 2021, 2(2): 53-61.
[11]	Kaifeng WANG, Xiangbao KAI, Ming LI, Yuan GAO, Yun LIU, Jinchuan CHAI. Application Prospect of Space-Integrated-Ground Information Network in Railway [J]. Space-Integrated-Ground Information Networks, 2021, 2(1): 93-98.
[12]	Xiaoning ZHANG, Lidong ZHU. Communication and Security Integrated Space-Earth Heterogeneous Network Architecture [J]. Space-Integrated-Ground Information Networks, 2020, 1(2): 11-16.
[13]	Gengxin ZHANG, Xiaojin DING, Zhicheng QU. Research on Space-Based Integrated Internet of Things Architecture and Interference Analysis [J]. Space-Integrated-Ground Information Networks, 2020, 1(2): 22-33.
[14]	Wenlan DIAO, Jianping AN, Yu ZHANG, Han HU. Multiple Addressing Coordination and Switching Technology in Space-Integrated-Ground Information Network [J]. Space-Integrated-Ground Information Networks, 2020, 1(2): 42-47.
[15]	Yang CAO, Yufeng ZHU, Junfeng LV, Tao JIANG, Peng GAO, Dongchen ZHANG. Research on In-Network Caching Mechanisms for Space-Integrated-Ground Content Delivery Service [J]. Space-Integrated-Ground Information Networks, 2020, 1(2): 48-56.