【作者】 卓莹； 那丹彤； 龚正虎；

【Author】 ZHUO Ying;NA Dan-tong;GONG Zheng-hu;Dept.of Electronic Engineering,Academy of Armored Force Technology;School of Computer Science,National University of Defense Technology;

【机构】 装甲兵技术学院电子工程系； 国防科学技术大学计算机学院；

【摘要】 基于融合的网络态势感知,提供全面宏观的网络运行状态视图,加强对网络的管理和控制,为高层指挥人员提供决策支持。在传统网络管理基础上,集成拓扑发现和流量分析,作为态势感知的信息来源。建立了基于拓扑流量挖掘的网络态势感知模型(TTM),介绍了TTM模型结构以及建模与感知过程,提出了多视图、超体积态势可视化方案(MVHV),实现了全网态势量化评估和可视化。原型系统实验结果验证了TTM模型的时效性、准确性和可扩展性。更多还原

【Abstract】 Fusion based Cyberspace Situational Awareness(CSA) provides the comprehensive macroscopic view of network operating status, enhances the management and control on network, and offers the decision-support for the high-level commander. On the basis of traditional network management, we integrated its two function units: traffic analysis and topology discovery as the information source of CSA and established Cyberspace Situational Awareness Model based on Topology and Traffic Mining(TTM). We then introduced the modeling process and awareness process, and proposed a multi-view hypervolume scheme(MVHV). The experiment results of propotype system demonstrate the efficiency, effectiveness and scalability.更多还原