基于数据方块图的网络数据包安全可视化研究  被引量：1

作　　者：李芳 

机构地区：[1]中关村学院,北京100083

出　　处：《现代电子技术》2017年第15期83-86,共4页Modern Electronics Technique

摘　　要：针对传统分析日志数据方法无法有效检测出分布式拒绝服务攻击存在的海量攻击,对异常网络数据包的检测精度低,并且检测效果不够直观的问题,研究了基于数据方块图的网络数据包安全可视化过程,通过数据采集统计模块采集并分析网络中的随机数据包,采用节点坐标运算模块选择合理的算法原则运算网络数据包的图形元素的属性,利用图形显示模块呈现网络数据包的图形元素,采用基于用户的参数调控性能对显示模型效果进行调控,获取网络数据包中的详细信息。给出数据采集统计模块和图形显示模块的实现过程,采用数据方块图对网络数据包中的攻击和端口进行检测,显示出网络中不同主机的端口、连接频率和传递数据包的数量以及其中存在的攻击,实现网络数据包安全的可视化控制。实验结果说明,所研究方法能够准确检测出网络中存在的攻击,准确显示异常数据包。The traditional log data analysis method can＇t detect the mass attacks existing in distributed denial of service attack effectively, has low detection precision of abnormal network data packet, and its detection effect is not intuitive enough. Aiming at the above problems, the data block diagram based security visualization process of network data packet is studied. The data acquisition and statistics module is used to collect and analyze the random data packet in the network. The node coordinate operation module is adopted to choose the reasonable algorithm principle to operate the attribute of graphical element of the network data packet. The graphic display module is employed to present the graphical element of network data packet. The pa- rameter control performance based on user is used to control the effect of the display model, and get the detail information in the network data packet. The implementation processes of data acquisition and statistics module and graphic display module are given. The data block diagram is used to test the attack and port of the network data packet, display the port and connection frequency of different host computers in the network, transmit the quantity of data packet, and detect its attacks to realize the visualization control of network data packet safety. The experimental results show that the method can detect the attack existing in the network accurately, and display the abnormal data packet precisely.

关 键 词：数据方块图 网络数据包 安全 可视化 

分 类 号：TN711-34[电子电信—电路与系统] TP319[自动化与计算机技术—计算机软件与理论]