Network Proactive Defense Model Based on Immune Danger Theory

Authors

  • Yu Wang
  • Zhenxing Wang National Digital Switching System Engineering and Technological Research Center, 450000 Zhengzhou
  • Liancheng Zhang National Digital Switching System Engineering and Technological Research Center, 450000 Zhengzhou
  • Yazhou Kong National Digital Switching System Engineering and Technological Research Center, 450000 Zhengzhou

Keywords:

Network security, danger theory, proactive defense model, attacking behavior analysis, real-time awareness

Abstract

Recent investigations into proactive network defense have not produced a systematic methodology and structure; in addition, issues including multi-source information fusion and attacking behavior analysis have not been resolved. Borrowing ideas of danger sensing and immune response from danger theory, a proactive network defense model based on danger theory is proposed. This paper defines the signals and antigens in the network environment as well as attacking behavior analysis algorithm, providing evidence for future proactive defense strategy selection. The results of preliminary simulations demonstrate that this model can sense the onset of varied network attacks and corresponding endangered intensities, which help to understand the attack methods of hackers and assess the security situation of the current network, thus a better proactive defense strategy can be deployed. Moreover, this model possesses good robustness and accuracy.

Downloads

Download data is not yet available.

Downloads

Published

2016-03-01

How to Cite

Wang, Y., Wang, Z., Zhang, L., & Kong, Y. (2016). Network Proactive Defense Model Based on Immune Danger Theory. COMPUTING AND INFORMATICS, 34(5), 1089–1112. Retrieved from http://www.cai.sk/ojs/index.php/cai/article/view/1141