Title :
Network security situation awareness based on heterogeneous multi-sensor data fusion and neural network
Author :
Wang, Huiqiang ; Liu, Xiaowu ; Lai, Jibao ; Liang, Ying
Author_Institution :
Harbin Eng. Univ., Harbin
Abstract :
Network Security Situation Awareness (NSSA) is a hot research realm in the area of network security, which helps security analysts to solve the challenges they encounter. This paper mainly focuses on a NSSA which is based on heterogeneous multi-sensor data fusion using neural network. We designed a NSSA model and discussed it in detail. We adopted Snort and NetFlow as sensors to gather real network traffic and fused them using a multi-layer feed-forward neural network that can solve a multi-class problem. We presented an effective and simple feature reduction approach to decrease the input vector and improve the real-time characteristic of fusion engine. In addition, we described a situation generation mechanism in order to provide the real security situation of the monitored networks. Our model is proved to be feasible and effective through a series of experiments, using real network traffic.
Keywords :
computer networks; feedforward neural nets; security of data; sensor fusion; telecommunication security; telecommunication traffic; NetFlow; Snort; feature reduction; fusion engine; heterogeneous multisensor data fusion; multiclass problem; multilayer feedforward neural network; network monitoring; network security situation awareness; network traffic; security analysis; Data security; Engines; Feedforward neural networks; Feedforward systems; Multi-layer neural network; Neural networks; Sensor fusion; Sensor phenomena and characterization; Telecommunication traffic; Traffic control;
Conference_Titel :
Computer and Computational Sciences, 2007. IMSCCS 2007. Second International Multi-Symposiums on
Conference_Location :
Iowa City, IA
Print_ISBN :
978-0-7695-3039-0
DOI :
10.1109/IMSCCS.2007.15
