Research On Service-Oriented Network Layer Network Security Situation Awareness Method

The latest report of International Telecommunication Union says that the next generation of the Internet will be "a network of various services". Network services have become a hot research in domestic and international computer field. According to statistics, a growing number of attacks attack on the network service system and lead to services migration or failure, taking advantage of the vulnerability of network services or network protocol, which cause serious security problems.Network security situation depends on the health status of the network services provided by network system. At the same time all kinds of network anomalies (such as viruses, hacker attacks, vandalism, etc.) directly threat to the security situation of the network services. In order to get the running situation of the network service accurately and efficiently, and then to perceive the overall security situation of the network, we should find abnormal behavior and the presence of threats early in the network layer which would help network policy makers take positive action and avoid to cause irreparable serious consequences.This thesis researches on service-oriented network layer network security situation awareness method and puts it into practice. Drawing on the idea of network security situational awareness, combined with service-oriented network layer data features, the thesis designs a hierarchical service-oriented network layer implementation model of network security situation awareness. According to the model, the thesis built a service-oriented network layer network security situation assessment index system which based on datagram delivery performance information-datagram statistics information-datagram detection information. On the basis of evaluating index system the thesis researches on service-oriented network layer network security situation assessment method and service-oriented network layer network security situation prediction method. According to the above method the thesis designs and implements the service-oriented network layer network security situation awareness system, which monitor the network services and collect and process the network level data, test the services running situation and perceive the overall security situation of managed network.