文章基本信息

标题：APT安全检测体系架构及关键技术研究
其他标题：The Study of APT Security Detection Architecture and Key Technologies
本地全文：下载
作者：刘怡文 ; 黄琼 ; 余静等
期刊名称：Journal of Security and Safety Technology
印刷版ISSN：2330-4677
电子版ISSN：2330-4685
出版年度：2015
卷号：03
期号：03
页码：24-29
DOI：10.12677/JSST.2015.33005
出版社：Hans Publishers
摘要：本文分析了现有APT攻击检测技术及存在的问题，提出了APT安全检测体系架构和APT检测的关键技术，给出了APT时域关联规则挖掘算法，采用大数据分析技术构建了安全知识库；并提出了基于分类的APT攻击检测方法。
其他摘要：In this paper, by analyzing some drawbacks of the existing APT attack detection technology, APT security detection architecture and its key technologies have been proposed. Among this, a mining algorithm for APT time-domain association rule was given, and the security knowledge base was created using large-data analysis technology. Furthermore an APT attack detection method based on classification was proposed, which occupied significant roles in the APT security detection architecture.
关键词：APT攻击 ; 大数据分析 ; 数据挖掘 ; 知识发现 ; 攻击检测 ; APT Attack ; Large-Data Analysis ; Data Mining ; Knowledge Discovery ; Attack Detection
其他关键词：APT攻击 ; 大数据分析 ; 数据挖掘 ; 知识发现 ; 攻击检测 ; APT Attack ; Large-Data Analysis ; Data Mining ; Knowledge Discovery ; Attack Detection