北京邮电大学学报

  • EI核心期刊

北京邮电大学学报 ›› 2019, Vol. 42 ›› Issue (3): 64-71.doi: 10.13190/j.jbupt.2018-268

• 论文 • 上一篇    下一篇

基于深度信念网络的端信息跳变模式自适应策略

石乐义1,2, 李剑蓝1, 郭宏彬1, 马猛飞1, 陈鸿龙3   

  1. 1. 中国石油大学(华东) 计算机与通信工程学院, 青岛 266580;
    2. 广西密码学与信息安全重点实验室, 桂林 541000;
    3. 中国石油大学(华东) 信息与控制工程学院, 青岛 266580
  • 收稿日期:2018-10-31 出版日期:2019-06-28 发布日期:2019-06-20
  • 作者简介:石乐义(1975-),男,教授,E-mail:shileyi@upc.edu.cn.
  • 基金资助:
    山东省自然科学基金项目(ZR201808160254);广西密码学与信息安全重点实验室研究课题(GCIS201811);国家自然科学基金项目(61772551)

Research on Adaptive Strategy of End Hopping System Based on Deep Belief Nets

SHI Le-yi1,2, LI Jian-lan1, GUO Hong-bin1, MA Meng-fei1, CHEN Hong-long3   

  1. 1. College of Computer and Communication Engineering, China University of Petroleum(East China), Qingdao 266580, China;
    2. Guangxi Key Laboratory of Cryptography and Information Security, Guangxi 53000, China;
    3. College of Information and Control Engineering, China University of Petroleum(East China), Qingdao 266580, China
  • Received:2018-10-31 Online:2019-06-28 Published:2019-06-20

摘要: 针对端信息跳变主动防御技术中跳变策略单一的问题,将多样异构的跳变模式引入端信息跳变系统,拓展了端信息的定义,并给出跳变策略的自适应调整方案.提出一种基于深度信念网络的端信息跳变自适应模型,形式化地描述了模型中数据收集、特征提取和状态预测等过程,定义了端信息跳变网络状态特征指标,并建立了特征数据集.利用深度信念网络对数据集进行建模,利用马尔可夫链预测下一周期的网络状态,并根据预测结果选取异构的跳变模式,从而实现端信息跳变模式的自适应变化.实验结果显示,模型网络状态识别和预测具有较高的准确性,并且异构的跳变策略能够有效抵御不同的攻击类型,进而验证了端信息跳变自适应模型的有效性和安全性.

关键词: 主动网络防御, 端信息跳变, 深度信念网络, 自适应策略

Abstract: For problem of single hopping strategy in active cyber defense of end hopping, the multiple and heterogeneous hopping patterns are introduced into the end hopping system, the definition of end information is expanded, and the self-adaptive adjustment scheme of the end hopping is given. Further, an adaptive model of end hopping based on deep belief network is proposed, and the process of data collection, feature extraction and state prediction are formalized. The state feature index of end hopping network is defined and the characteristic data set is established. The Markov chain is used to predict the state of network in the next cycle. The heterogeneous hopping mode is selected according to the prediction results. Thus, the adaptive change of the end hopping mode is realized. Experiments show that the network state recognition and prediction of the model all have high accuracy, and the heterogeneous hopping strategy can effectively resist different types of attacks, which illustrates the validity and security of the end hopping adaptive model.

Key words: active cyber defense, end hopping, deep belief network, adaptive strategy

中图分类号: