Improved Design of the Scalable Network Security Situation Model
HU Wei1,2,LI Jian-hua1, CHEN Xiu-zhen1, and JIANG Xing-hao1 (1. Department of Electronic Engineering, Shanghai Jiaotong University Xuhui Shanghai 200240; 2. Network Control Center, State Grid Information & Technology Co. Ltd. Xuanwu Beijing 100761)
Although network security situation (NSS) becomes a hot topic, the investigation on situation awareness (SA) still lacks an approbatory standard. Based on Endsley’s research, the paper presents a scalable NSS model, and improves situation extraction (SE) to fit the network environment. The proposed model utilizes knowledge bases to standardize the situation acquisition and model the situation as an entity. The incident frequency, incident time, and space information are contained in the model, and the situation acquisition is simplified. Finally, the simulation results prove the model’s feasibility and efficiency.