發(fā)布時(shí)間：2018-04-22 09:39

  本文選題：聯(lián)動(dòng)系統(tǒng) + 預(yù)處理��； 參考：《華北電力大學(xué)》2014年碩士論文

【摘要】：隨著計(jì)算機(jī)網(wǎng)絡(luò)規(guī)模的迅速壯大，多種多樣的入侵手段使當(dāng)前網(wǎng)絡(luò)面臨的安全問題日益突出。目前應(yīng)用的各種網(wǎng)絡(luò)安全設(shè)備，只對(duì)網(wǎng)絡(luò)形成了單方面的防護(hù)，不能滿足當(dāng)前用戶日益增長的安全需求，因此，從整體和聯(lián)動(dòng)的角度出發(fā)，構(gòu)建以安全設(shè)備為基礎(chǔ)，有效管理各設(shè)備的網(wǎng)絡(luò)安全設(shè)備聯(lián)動(dòng)系統(tǒng)已經(jīng)成為網(wǎng)絡(luò)安全領(lǐng)域的研究熱點(diǎn)。 本文針對(duì)網(wǎng)絡(luò)安全設(shè)備聯(lián)動(dòng)系統(tǒng)所需的底層數(shù)據(jù)進(jìn)行了采集、清理、聚類分析和預(yù)測(cè)。研究了日志預(yù)處理的相關(guān)技術(shù)，設(shè)計(jì)了的網(wǎng)絡(luò)安全設(shè)備的日志預(yù)處理模型。主要解決了以下幾個(gè)問題：第一，對(duì)網(wǎng)絡(luò)安全設(shè)備日志分布散亂、不易管理的問題，設(shè)計(jì)了日志采集平臺(tái)對(duì)各安全設(shè)備的日志進(jìn)行統(tǒng)一采集和管理，，并完成了平臺(tái)搭建和最底層日志數(shù)據(jù)的采集工作。第二，本論文采用粒度級(jí)清理算法，對(duì)日志中的重復(fù)、不完整和錯(cuò)誤數(shù)據(jù)等進(jìn)行了清理工作。第三，運(yùn)用回聲狀態(tài)網(wǎng)絡(luò)算法對(duì)網(wǎng)絡(luò)安全日志數(shù)據(jù)進(jìn)行聚類分析，并利用KDD數(shù)據(jù)集進(jìn)行訓(xùn)練和預(yù)測(cè)，通過預(yù)測(cè)結(jié)果與真實(shí)值的比較，驗(yàn)證了回聲狀態(tài)網(wǎng)絡(luò)算法能夠較為準(zhǔn)確的根據(jù)日志數(shù)據(jù)的攻擊類型進(jìn)行分類。第四，本文將XML定為日志數(shù)據(jù)的統(tǒng)一描述語言，并通過Java+JDOM編程將各安全設(shè)備日志轉(zhuǎn)換為XML文件，實(shí)現(xiàn)了聯(lián)動(dòng)系統(tǒng)中日志數(shù)據(jù)的標(biāo)準(zhǔn)化。 本文將研究的模型應(yīng)用到網(wǎng)絡(luò)安全設(shè)備聯(lián)動(dòng)系統(tǒng)中，驗(yàn)證了日志預(yù)處理模型的可行性和有效性，所設(shè)計(jì)的網(wǎng)絡(luò)安全設(shè)備聯(lián)動(dòng)系統(tǒng)主要包括日志數(shù)據(jù)的查詢、清理和備份等功能，直觀的展現(xiàn)了日志預(yù)處理的流程和主要功能，方便了管理員對(duì)日志數(shù)據(jù)的統(tǒng)一管理。
[Abstract]:With the rapid expansion of the computer network, the security problems facing the network are becoming increasingly prominent due to various intrusion methods. At present, all kinds of network security devices used only form unilateral protection to the network, and can not meet the increasing security needs of current users. Therefore, from the perspective of the whole and the linkage, we construct the security equipment as the foundation. Effective management of the network security equipment linkage system has become a research hotspot in the field of network security. In this paper, we collect, clean up, cluster analysis and predict the underlying data needed by the network security equipment linkage system. The related technology of log preprocessing is studied, and the log preprocessing model of network security equipment is designed. The main solutions are as follows: first, the network security equipment log distribution scattered, difficult to manage the problem, designed a log acquisition platform for the security equipment log collection and management, And completed the platform construction and the lowest level log data collection work. Secondly, this paper uses the granularity level cleaning algorithm to clean up the duplicate, incomplete and error data in the log. Thirdly, the echo state network algorithm is used to cluster the network security log data, and the KDD data set is used to train and predict the network security log data. The prediction results are compared with the real values. It is verified that the echo state network algorithm can be classified accurately according to the attack types of log data. Fourthly, this paper defines XML as the unified description language of log data, and converts the log of each security device into XML file through Java JDOM programming, and realizes the standardization of log data in the linkage system. This paper applies the model to the network security equipment linkage system, and verifies the feasibility and effectiveness of the log preprocessing model. The designed network security equipment linkage system mainly includes log data query, cleaning and backup functions. The process and main functions of log preprocessing are displayed intuitively, and the unified management of log data is facilitated.
【學(xué)位授予單位】：華北電力大學(xué)
【學(xué)位級(jí)別】：碩士
【學(xué)位授予年份】：2014
【分類號(hào)】：TP393.08

【參考文獻(xiàn)】

相關(guān)期刊論文 前10條

1 林超良;洪志全;;基于XMLBeans的XML文檔操作研究與實(shí)現(xiàn)[J];信息技術(shù);2007年02期

2 方航鋒,汪海航;日志提取分析系統(tǒng)的設(shè)計(jì)和實(shí)現(xiàn)[J];計(jì)算機(jī)工程;2004年14期

3 賴積保;王慧強(qiáng);劉效武;梁穎;鄭瑞娟;趙國生;;WNN-Based Network Security Situation Quantitative Prediction Method and Its Optimization[J];Journal of Computer Science & Technology;2008年02期

4 胡孟梁;耿良;蔡瑞英;;一種通用綜合日志系統(tǒng)的設(shè)計(jì)與實(shí)現(xiàn)[J];計(jì)算機(jī)應(yīng)用與軟件;2008年05期

5 劉必雄;許榕生;;基于XML的綜合日志預(yù)處理模型設(shè)計(jì)[J];莆田學(xué)院學(xué)報(bào);2007年05期

6 陳國棟;夏火松;章偉;;基于XML的Web日志知識(shí)獲取集成系統(tǒng)[J];情報(bào)雜志;2007年01期

7 王寧,陳瀅,俞本權(quán),徐宏炳,王能斌;一個(gè)基于CORBA的異構(gòu)數(shù)據(jù)源集成系統(tǒng)的設(shè)計(jì)[J];軟件學(xué)報(bào);1998年05期

8 馬瑞民;李向云;;Web日志挖掘中數(shù)據(jù)預(yù)處理技術(shù)的研究[J];計(jì)算機(jī)工程與設(shè)計(jì);2007年10期

9 渠本哲;張凝;王潛平;;使用Java和XML實(shí)現(xiàn)數(shù)據(jù)移植[J];計(jì)算機(jī)技術(shù)與發(fā)展;2006年09期

10 周穎;王義發(fā);;用JDOM和XML實(shí)現(xiàn)異構(gòu)數(shù)據(jù)庫的數(shù)據(jù)提取[J];計(jì)算機(jī)技術(shù)與發(fā)展;2006年11期

相關(guān)博士學(xué)位論文 前1條

1 劉杰;面向數(shù)據(jù)集成的數(shù)據(jù)清理關(guān)鍵技術(shù)研究[D];中國科學(xué)技術(shù)大學(xué);2010年

本文編號(hào)：1786672