As an active topic in the research field, network security situation assessment can reflect the security situation from a global perspective. However, existing assessment approaches rely on detection threshold to make decisions, leading to massive false positives and false negatives. This paper proposes a confidence-based network security situation assessment approach that preserves the probability information in attack detection. We use the ensemble learning algorithm and D-S evidence theory to obtain the attack confidence, and calculate the network security situation value through the situation elements fusion. Experiment results demonstrate that this approach is effective and accurate.
CITATION STYLE
Liu, D., Dong, L., Lv, S., Dong, Y., He, F., Wu, C., … Ma, H. (2017). A novel approach to network security situation assessment based on attack confidence. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 10394 LNCS, pp. 450–463). Springer Verlag. https://doi.org/10.1007/978-3-319-64701-2_33
Mendeley helps you to discover research relevant for your work.