提出了一个基于抗体浓度的网络安全态势实时定量感知模型.给出了模型中抗原、抗体、抗体浓度等概念的定义及其形式化表示,论述了模型的体系架构和工作原理,并与相关技术进行了综合对比.理论分析和实验结果表明该模型是有效的,且具有实时性好、自适应能力强等优点,为实时、定量感知计算机网络与信息系统的安全风险提供了一种新思路.
An antibody concentration based model for network security situation awareness is proposed . With the concepts and formal definitions of antigen, antibody and antibody concentration presented, the architecture and principle of the model are described. Synthesis comparison and experimental results show that the proposed model is valid, and it has the features of being realtime and self-adaptive. Thus, it provides a good solution to the security risk awareness for computer network and information systems.