Xingshu CHEN,Xuemei ZENG,Wenxian WANG,Guolin SHAO

DOI: https://doi.org/10.15961/j.jsuese.201600352

2017-01-01

Abstract:With the development of IT and communication technology,the network environment is becoming more and more complicated,and the perimeters of host and network become dynamic and fuzzy due to the application of cloud computing and visualization technology.At the same time,network attacks become more frequent and advanced network threats with evasive and persistent behavior and profit-chasing are also increasing.However,due to the limit of data source and process ability and device deployment relied on physical environment,traditional network security and intelligence techniques are inefficient on the acquisition capability,analytical abilities and utilize capacity of threat intelligence,and the perception and prediction ability of the network security situation is limited,so it cannot solve the current and future network security challenges efficiently.The chances and challenges caused by big data for network security and intelligence analysis are took as this paper clue.first of all,the connotation of big data is reviewed,and the current dilemmas in network security and intelligence analysis are analyzed,and then the relationship between big data with network security and intelligence analysis is explored,and the changes of traditional security analysis brought by big data technologies are parsed.Big data security analysis,a new security method is formed after the big data technologies was applied in cyber security field.The value of big data security analysis embodies in solving practical problems in network security and intelligence analysis through the methods and technologies of big data analysis under sticking to the purpose of security analysis and the character of security data itself.On the one hand,big data processing technology,such as bulk data processing technology,streaming data processing technology,interactive data query technology,can solve the issues of data processing in the high-performance network traffic real-time restore and analysis,massive historical log data analysis and rapid retrieval,massive text data real-time processing.On the other hand,big data technologies are applied in security visual analysis,security event association and network user behavior analysis,a series research branch of big data security analysis are formed,such as big data interactive visual analysis,multi-source event correlation analysis,user entity behavior analysis,network behavior analysis and so on.Big data security analysis technologies have applied in APT attack detection,network anomaly detection,network security situation perception,network threat intelligence analysis,ere.Even though some achievements have been made in big data based network security and intelligence analysis,the current network security situation is still not optimistic.The effective detection method of advanced network threats and attacks is lacking.The detection and prediction result to unknown complex network attacks is undesirable.The measurement system for evaluation methods of network security situation awareness is needed,and large-scale network security situation awareness indicator system for key assets and entire network is incomplete yet,and the evaluation methods are no pertinence.It is difficult to acquire data from new type data sources of threat information and the standards of threat intelligence sharing are needed to be researched further.Large-scale and integrate threat intelligence center and open service platform aren't yet build.Around the above problems,it needs to be studied that the methods of advanced network threat discovery,complex network attack prediction,large-scale network security situational awareness and threat information collection and sharing technology and needs some key technical breakthroughs such as early detection of advanced network threats,concealment of continuous network communication behavior detection,big data analytics based network feature extraction technology,intelligent-based advanced network threat forecast,non-public network intelligence collection,so as to improve the big data supporting capability for network information security and enhance network information security risk perception and disposal capacity.

Kongduo Xing

DOI: https://doi.org/10.26689/jera.v7i6.5667

2023-11-29

Journal of Electronic Research and Application

Abstract:In recent years, China has witnessed continuous development and progress in its scientific and technological landscape, with widespread utilization of computer networks. Concurrently, issues related to computer network information security, such as information leakage and virus invasions, have become increasingly prominent. Consequently, there is a pressing need for the implementation of effective network security measures. This paper aims to provide a comprehensive summary and analysis of the challenges associated with computer network information security processing. It delves into the core concepts and characteristics of big data technology, exploring its potential as a solution. The study further scrutinizes the application strategy of big data technology in addressing the aforementioned security issues within computer networks. The insights presented in this paper are intended to serve as a valuable reference for individuals involved in the relevant fields, offering guidance on effective approaches to enhance computer network information security through the application of big data technology.

Yuantian Miao,Zichan Ruan,Lei Pan,Yu Wang,Jun Zhang,Yang Xiang

DOI: https://doi.org/10.48550/arXiv.1804.09023

2018-04-24

Abstract:Network traffic analytics technology is a cornerstone for cyber security systems. We demonstrate its use through three popular and contemporary cyber security applications in intrusion detection, malware analysis and botnet detection. However, automated traffic analytics faces the challenges raised by big traffic data. In terms of big data's three characteristics --- volume, variety and velocity, we review three state of the art techniques to mitigate the key challenges including real-time traffic classification, unknown traffic classification, and efficiency of classifiers. The new techniques using statistical features, unknown discovery and correlation analytics show promising potentials to deal with big traffic data. Readers are encouraged to devote to improving the performance and practicability of automatic traffic analytic in cyber security.

Cryptography and Security

Xingshu CHEN,Lu YANG,Yonggang LUO

DOI: https://doi.org/10.15961/j.jsuese.201700726

2017-01-01

Abstract:The development and application of big data technology has a deep influence on the national governance model,corporate decision-making architecture,business strategy and personal lifestyle.The data aggretation not only increases the risk of user privacy leaks,but the huge information and potential value contained in big data also attract more potential attackers.Moreover,the big data application is a cross-disciplinary application,which introduces not only a lot of new technologies but more and higher risks.The definition and characteristics of big data is reviewed,and the big data architecture and big data security system are put forward in this paper.Based on this system,the security challenges facing the current big data and research progress of big data security technologies are analyzed from four perspectives:laws and regulations,standards,data life cycle protection and big data platform key technology.Laws and regulations in America,European Union,China and the research status of big data security standarlization of International Organization for Standardization,America,China and so on was introduced.Big data platform is needed to realize the collection,transmission,storage and analysis and so on in big data lifecycle.In this paper,the security problems and key technologies of big data are analyzed from two dimensions of big data lifecycle and big data platform.The lifeeycle includes collection,storage,usage,distribution and deletion five phases.Data value is determined by the data quality of the collection phase.Data and model inconsistency detection and data cleaning are the main technical means to improve data quality.The processed big data is transmit to external entities in big data distribution phase,so the protection of privacy and sensitive information is essential.The retalted key technologies are data anonymity,privacy-protecting data retrieval and analysis.The big data management support the effective use of big data and ensure big data security,which mainly contains metadata management and data lineage.The problems of authentication,data isolation,data encryption storage,big data platform border protection and audit between big data components can be solved by the big data platform security with the key technologies such as authentication,access control,data encryption and audit.At present,a perfect big data security standard system is still lacking in the world.The norms and guidance for privacy protection,data sharing,cross-border data transmission from standards are urgent needed.With the rapid development of big data analysis technology,it's difficult to predict the challenge of privacy protection and sensitive information protection from big data association analysis in the future.The existing data masking and privacy protection technology will face a great challenge.The data analysis without exposure to data privacy and sensitive information can be achieved by data homomorphic encryption,but the existing homomorphic encryption algorithm is far from mature.The current authentication,data encryption and access control in the big data platform use the traditional technology,which can't adapt to the new environment with large scale of data,complex processing logic and huge amount of users.Some of the big data security key technologies are also worthy of indepth study in the performance and availability for early practical application.In addition,using big data pro-cessing technology to develop security applications such as network security situation perception,intrusion detection and network threat intelligence analysis,and using big data technology to resist attacks against big data have become a new research trend in the field of big data security.The development of big data security requires the united support and promotion of laws and regulations,standards and key technologies.

Hanlu Chen,Yulong Fu,Zheng Yan

DOI: https://doi.org/10.1007/978-3-319-64701-2_10

2017-01-01

Abstract:With the development of network technologies such as IoTs, D2D and SDN/NFV, etc., convenient network connections with various networks have stepped into our social life, and make the Cyber Space become a fundamental infrastructure of the modern society. The crucial importance of network security has raised the requirement of security measurement on a heterogeneous networking system. However, the research on this topic is still in its infancy. According to the existing security evaluation schemes of intrusion and malware detection, we believe the network data related to security should be the key for effective network security measurement. A study of the algorithms in terms of data analysis for Data Dimension Reduction, Data Classification and Data Composition becomes essential and urgent for achieving the goal of network security measurement. In this paper, we focus on the problem of big data analysis methods for security measurement, and mainly investigate the existing algorithms in different processes of big data analysis. We also evaluate the existing methods in terms of accuracy, validity and their support on security related data analysis. Through survey, we indicate open issues and propose future research trends in the field of network security measurement.

Kai-da JIANG,Xiao LI,Qiang SUN

DOI: https://doi.org/10.3969/j.issn.1671-1122.2014.05.008

2014-01-01

Abstract:The value of big data technology in the ifeld of network security has become increasingly prominent. This article conducted in-depth research and practice in the ifeld of network trafifc analysis from the perspective of protecting the campus network information security, collect and storage of a massive network trafifc metadata to using big data platform to do security correlation analysis, and then can enhance the campus network’s information security using the ifltered information.

Qiang Zhang,Dehui Ma

DOI: https://doi.org/10.1088/1742-6596/1744/3/032199

2021-02-01

Journal of Physics: Conference Series

Abstract:Abstract With the maturity and expand of big data tech, based on BDA, it can realize the real-time monitoring of network data and information, and help the system to make autonomous and dynamic decision-making and processing of network security events. At present, there are still some problems and deficiencies in the utilization of Network Security Analysis (NSA), which need to be improved urgently. Based on this, this paper first analyses the current situation of Computer Network Security (CNS), then studies the characteristics and utilization of big data tech, and finally gives the specific implementation and utilization of network security based on big data tech.

Md Ileas Pramanik,Raymond Y. K. Lau,Wei T. Yue,Ye Yunming,Li Chunping

DOI: https://doi.org/10.1002/widm.1208

2017-01-01

Abstract:Applications of various data analytics technologies to security and criminal investigation during the past three decades have demonstrated the inception, growth, and maturation of criminal analytics. We first identify five cutting-edge data mining technologies such as link analysis, intelligent agents, text mining, neural networks, and machine learning. Then, we explore their recent applications to the criminal analytics domain, and discuss the challenges arising from these innovative applications. We also extend our study to big data analytics which provides some state-of-the-art technologies to reshape criminal investigations. In this paper, we review the recent literature, and examine the potentials of big data analytics for security intelligence under a criminal analytics framework. We examine some common data sources, analytics methods, and applications related to two important aspects of social network analysis namely, structural analysis and positional analysis that lay the foundation of criminal analytics. Another contribution of this paper is that we also advocate a novel criminal analytics methodology that is underpinned by big data analytics. We discuss the merits and challenges of applying big data analytics to the criminal analytics domain. Finally, we highlight the future research directions of big data analytics enhanced criminal investigations. (C) 2017 John Wiley & Sons, Ltd

Hua Fang,Zhaoyang Zhang,Chanpaul Jin Wang,Mahmoud Daneshmand,Chonggang Wang,Honggang Wang

DOI: https://doi.org/10.1109/mnet.2015.7293298

IF: 10.294

2015-01-01

IEEE Network

Abstract:Big data create values for business and research, but pose significant challenges in terms of networking, storage, management, analytics, and ethics. Multidisciplinary collaborations from engineers, computer scientists, statisticians, and social scientists are needed to tackle, discover, and understand big data. This survey presents an overview of big data initiatives, technologies, and research in industries and academia, and discusses challenges and potential solutions.

Yuxuan Sun

DOI: https://doi.org/10.54254/2755-2721/4/2023326

2023-06-14

Abstract:The Internet has entered the big data era, and as more and more businesses employ big data, cloud computing, the Internet of Things, artificial intelligence, and other technologies, the amount of data on the Internet as a whole has also grown dramatically. While Big Data technology has improved the efficiency of many companies, it has also brought challenges for computer network information security protection technology, including massive data privacy leaks that seriously jeopardize the privacy of Internet users. This paper synthesizes literature review findings proving that computer network information security in the big data era has the characteristics of universality, suddenness, concealment, and intelligence in order to address this issue. It also studies the main network information security technologies, such as network situational awareness, vulnerability scanning, intrusion detection and firewall, and identity authentication. In addition, the paper finds that the current problems of network information security mainly include phishing attacks, computer viruses, ransomware, denial of service attacks, APT attacks and threats from inside the network. Finally, the paper explores a number of protective measures to address existing security issues, including the development of network monitoring and threat intelligence systems, the implementation of access control and authentication technologies, network isolation methods, regular software scanning and updates, and organising internal staff security training. Through this study we are able to fully understand the overall pulse of current computer network information security technology and development trends in the era of Big Data, thus providing a more comprehensive and accurate reference for Big Data-related participants to develop responsive information security protection measures and strategies to provide designation.

Computer Science

Zhi Yan Wang,Bei Zhan Wang,Yi Dong Wang

DOI: https://doi.org/10.4028/www.scientific.net/amr.989-994.4974

2014-01-01

Advanced Materials Research

Abstract:As the Internet is developing fast, network security issues are rising. Data mining technology is applied to the analysis and understanding data, revealing hidden data secret inside knowledge. Especially high dimensional data mining can be used in information security data analyze, making the study of high-dimensional data mining very important. In this paper, traditional data mining is introduced; the concept and core ideas of high dimensional data mining are described, as well as its applications in network security.

Fei Su,Zhenya Wang,Shan Yang,Ke Li,Xin Lu,Yang Wu,Yi Peng

DOI: https://doi.org/10.1007/978-3-319-72823-0_34

2017-01-01

Abstract:With the beginning of new era, data has grown rapidly in both the size and the variety. It becomes not only an important cornerstone of all walks of life, but also the national strategy. The big data collection, parsing, analysis, and applications are important issues to research. For different scenarios of big data applications, appropriate big data processing technologies are needed to complete the real-time and rapid data analysis. The objective of this paper is to analyze the typical big data analysis technologies, find out the characteristics and applicative scenarios, and then provide the reference for big data processing of all industries.

Yuehua Huo,Yanyu Sun,Weiqiang Fan,Xinzhou Cheng,Dong Li,Yinlong Liu

DOI: https://doi.org/10.1007/978-3-319-72823-0_10

2017-01-01

Abstract:In the ubiquitous network, these many devices generate a huge amount of data. The sharp increase of the diverse devices has led to the various heterogeneous data types and the booming growth of the data, that is, the ubiquitous network will bring big data. Due to the heterogeneity and ubiquitous nature of ubiquitous networks, the big data of ubiquitous network faces a broad and growing range of security threats and challenges. Based on the basic knowledge of the big data of ubiquitous network, this paper analyzes the security threats in the process of data collection, storage, processing and application. System elaborated the big data of ubiquitous network encryption and integrity protection, access control, privacy protection, attack detection, security technology research status. The research direction and future development direction are also discussed in this paper.

Yining Ou

DOI: https://doi.org/10.23977/iciscetc2023.046

Abstract:: Owing to the constant progress of artificial intelligence big data technology, the research of network information security defense system is becoming increasingly vital. This article aims to study the network information security defense system based on AI big data analysis, and provide novel ideas and methods for enhancing the level of network information security defense. This paper analyzes the current application status of AI big data technology in the network information security defense system, points out the current problems and challenges, introduces the basic framework and components of a network information security defense system based on AI big data analysis, including network security data collection and storage, network security event detection and response, network security threat prediction and early warning, etc., and elaborates on the technical support in the network information security defense system based on AI big data analysis, including machine learning, deep learning, natural language processing, big data analysis, etc. These technologies can achieve rapid processing and analysis of large-scale network data, and perfect the response speed and accuracy of the network information security defense system.

Engineering,Computer Science

Zheng Yan

DOI: https://doi.org/10.1007/978-3-030-30619-9_1

2019-01-01

Abstract:Cyber security has become the most crucially important topic for safeguarding national and personal safety. Achieving cyber security depends not only on defense technologies, but also the technologies to detect and discover cyber intrusions, threats and attacks. Herein, network data plays an essential role. However, network data for security detection (i.e., security-related data) normally features big data characters. How to collect and process them in an efficient, effective and precise way becomes a big challenge towards network security measurement. In this article, I will introduce the current research results of my research team in terms of adaptive network data collection in heterogenous networks, data fusion and compression for highly efficient network intrusion detection and economic data storage, a method of application-layer tunnel detection with rules and machine learning, as well as data mining and analytics on opinions posted in the website for retrieving trust information and generating reputation. Working on security-related network data collection, fusion, mining and analytics, we make efforts to collect and process as few as possible data in a context-aware manner, but achieve as accurate as possible security detection results.

Xuyang Jing,Zheng Yan,Witold Pedrycz

DOI: https://doi.org/10.1109/comst.2018.2863942

IF: 35.6

2018-01-01

IEEE Communications Surveys & Tutorials

Abstract:Attacks over the Internet are becoming more and more complex and sophisticated. How to detect security threats and measure the security of the Internet arises a significant research topic. For detecting the Internet attacks and measuring its security, collecting different categories of data and employing methods of data analytics are essential. However, the literature still lacks a thorough review on security-related data collection and analytics on the Internet. Therefore, it becomes a necessity to review the current state of the art in order to gain a deep insight on what categories of data should be collected and which methods should be used to detect the Internet attacks and to measure its security. In this paper, we survey existing studies about security-related data collection and analytics for the purpose of measuring the Internet security. We first divide the data related to network security measurement into four categories: 1) packet-level data; 2) flow-level data; 3) connection-level data; and 4) host-level data. For each category of data, we provide a specific classification and discuss its advantages and disadvantages with regard to the Internet security threat detection. We also propose several additional requirements for security-related data analytics in order to make the analytics flexible and scalable. Based on the usage of data categories and the types of data analytic methods, we review current detection methods for distributed denial of service flooding and worm attacks by applying the proposed requirements to evaluate their performance. Finally, based on the completed review, a list of open issues is outlined and future research directions are identified.

Xin Shi

DOI: https://doi.org/10.2991/icemc-17.2017.19

2017-01-01

Abstract:Network big data refer to the massive data generated by interaction and fusion of the Ternary human-machine-thing universe in the Cyberspace and available on the Internet. The Increase of their scale and complexity provided that of the capacity of hardware characterized by the Moore law, which brings the grand challenges to the architecture and the processing and computing Capacity of the contemporary IT systems, meanwhile set presents live opportunities on Deep mining and taking full advantage of the big value of network big data. Therefore, it is Pressing to research the disciplinary issues and discover the common laws of network big data, And further study the fundamental theory and basic approach to qualitatively or quantitatively Dealing with network big data. This paper analysis thezens caused by the complexity, Uncertainty and emergence of network big data, and summarizes major issues and research status of The awareness, representation, storage, management, mining, and social computing of network Big data, as well as network data platforms and applications. It is looking ahead to the development Trends of big data science, new modes and paradigm of data computing, new IT infrastructures, And data security and privacy, etc.

Jing Wang,Xing Wang,Yi Xiao

DOI: https://doi.org/10.2991/jiaet-18.2018.73

2018-01-01

Abstract:With the progress of the times, the continuous development of science and technology, and the widespread application of computer networks, the Internet, the Internet of Things, big data, cloud computing, and artificial intelligence have gradually entered people's field of vision.In the era of big data era, computer network security has become the focus of attention.Computer network security measures have become key issues in the computer network in the big data era. Analysis of Computer Network Security in the Big Data Era Computer Network Security OverviewIn the big data era, all aspects of people's lives cannot be separated from computers, and the prevention of computer network security becomes more important.Broadly speaking, all relevant technologies and theories related to the confidentiality, integrity, availability, authenticity, and non-repudiation of information on computer networks are the research areas of computer network security.Computer network security includes physical security and logical security.Physical security means that system equipment and related facilities are physically protected from damage and loss.Logical security includes the integrity, confidentiality, and availability of information. Computer Network Security StatusIn the big data era, with the continuous development and upgrading of technologies such as the Internet, the Internet of Things, and cloud computing, people's lives, work, and studies are inseparable from computers.The capacity of computer data and information storage is increasing, but it is given to people.Convenience is also obvious.The security problems of various massive data and information generated by computer network applications are also gradually on the rise.For example, computer network problems such as property loss caused by leakage of personal information, computer network defects, and personal password accounts are stolen.Therefore, it is particularly important to strengthen computer network security.It not only threatens personal privacy and security, but also threatens social economic development and social harmony.

Jun Wang,Hong Huang

DOI: https://doi.org/10.1051/matecconf/202236501048

2022-10-15

MATEC Web of Conferences

Abstract:Big Data optimizes the process of information processing, expands the scale of information processing, and improves the application effect of big data and computer information technology. However, big data has also triggered data leakage, network viruses and other security risks. In the context of big data, in order to give full play to the application advantages of computer information security technology, it is necessary to give full play to all kinds of technology to avoid the problems such as system failures, external attacks and so on, then ensure that the computer system in a safe and stable operating environment. This paper analyzes the problems of computer information security technology under the background of big data, and puts forward the corresponding application strategies based on the concrete superiority technology.

Song Guo,Shui Yu,Jie Li,Nirwan Ansari

DOI: https://doi.org/10.1109/MNET.2016.7389823

IF: 10.294

2016-01-01

IEEE Network

Abstract:Big data analytics has shown great potential in optimizing operations, making decisions, spotting business trends, preventing threats, and capitalizing on new sources of revenues in various fields such as manufacturing, healthcare, finance, insurance, and retail. The management of various networks has become inefficient and difficult because of their high complexities and interdependencies. Big da...