黑灰产网络资产图谱构建与可视化  

Constructing and Visualizing Cyber Asset Graphs of Cybercrime Gangs

在线阅读下载全文

作  者:赵颖[1] 付铄雯 赵鑫[1] 徐雅琦 赵勇[1] 陈运鹏 周芳芳[1] 黄鑫 李玉伟 陈卓 Zhao Ying;Fu Shuowen;Zhao Xin;Xu Yaqi;Zhao Yong;Chen Yunpeng;Zhou Fangfang;Huang Xin;Li Yuwei;Chen Zhuo(School of Computer Science and Engineering,Central South University,Changsha 4100832;Qi An Xin Technology Group Incorporated,Beijing 100015)

机构地区:[1]中南大学计算机学院,长沙410083 [2]奇安信科技集团股份有限公司,北京100015

出  处:《计算机辅助设计与图形学学报》2024年第8期1181-1193,共13页Journal of Computer-Aided Design & Computer Graphics

基  金:国家自然科学基金(62072470,62272480);湖南省自然科学基金(2021JJ30881).

摘  要:黑灰产团伙的网络化运作严重破坏着网络生态和社会治安.查封黑灰产团伙掌握的核心资产,如重要IP地址和安全证书,是目前打击黑灰产的主要手段之一.为此,提出黑灰产网络资产图谱构建与可视化.首先提出一种黑灰产网络资产图谱构建方法.从多源异构数据中广泛获取黑灰产网络资产信息及关联关系,并整合到点边双异质有向图;然后提出一组黑灰产网络资产图可视化方法,基于资产图拓扑特性改进经典力导引布局算法和社区检测算法,帮助用户观察和理解资产间复杂关联,并快速地识别核心资产及其影响范围;最后公布一个大规模黑灰产网络资产图谱数据集,梳理数据集可支持的黑灰产治理需求,并展望图谱分析面临的技术挑战,旨在推动面向黑灰产治理的大数据分析技术的发展和创新.The internet ecosystem is being severely disrupted by cybercrime gangs,such as online gambling and online drug trafficking.Deactivating and banning core cyber assets of cybercrime gangs are widely-used manners to fight against cybercrimes.In this paper,we propose a cyber asset graph construction method for mining and integrating the information of and associations between cyber assets of cybercrime gangs from heterogeneous online data sources.We also propose a set of visualization methods,including graph layout methods,core asset identification methods and community detection methods that present cyber asset graphs for asset association analysis,core asset and its sphere of influence identification.Furthermore,a large-scale cyber asset graph dataset is released to the public,aiming to promote the development and innovation of ad-vanced data analysis technologies for cybercrime fighting.

关 键 词:黑灰产 网络资产图 可视化 公开数据集 

分 类 号:TP391.41[自动化与计算机技术—计算机应用技术]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象