中大機構典藏-NCU Institutional Repository-提供博碩士論文、考古題、期刊論文、研究計畫等下載:Item 987654321/95794
English  |  正體中文  |  简体中文  |  全文笔数/总笔数 : 80990/80990 (100%)
造访人次 : 41143592      在线人数 : 99
RC Version 7.0 © Powered By DSPACE, MIT. Enhanced by NTU Library IR team.
搜寻范围 查询小技巧:
  • 您可在西文检索词汇前后加上"双引号",以获取较精准的检索结果
  • 若欲以作者姓名搜寻,建议至进阶搜寻限定作者字段,可获得较完整数据
  • 进阶搜寻


    jsp.display-item.identifier=請使用永久網址來引用或連結此文件: http://ir.lib.ncu.edu.tw/handle/987654321/95794


    题名: 將網路威脅情報與多視角分析和雙聚類結合:一種多維視覺化方法;Enhancing Cyber Threat Intelligence (CTI) with Multiple-View Analysis and Biclustering: A Multi-Dimensional Visualization Approach
    作者: 陳光磊;CHEN, GUANG-LEI
    贡献者: 資訊工程學系
    关键词: 網路安全;多視圖視覺化;雙聚類;三維視覺化;Cybersecurity;multi-view visualization;Bicluster;3D visualization
    日期: 2024-08-13
    上传时间: 2024-10-09 17:17:11 (UTC+8)
    出版者: 國立中央大學
    摘要: 網路威脅情報(CTI)對於理解和減輕網路安全威脅至關重要。本文提出了一種新穎的方法,利用多視角分析和雙聚類技術來增強CTI資料的視覺化和理解。CTI包含各種資料類型,包括妨礙指標(IoCs)和戰術、技術與程序(TTPs),這些資料往往是非結構化和分散的,這使得網路安全專業人員的分析過程變得複雜。我們的方法整合了多視角視覺化和雙聚類技術來應對這些挑戰。多視角視覺化允許從不同的角度審視CTI,例如地理位置、攻擊類型和受影響的資產。通過將資料分成不同的視圖,分析師可以專注於特定方面,而不會被無關的資訊分散注意力,從而降低了複雜性並提高了清晰度。雙聚類技術則根據關係將相關實體分組成子集,將資料轉換為矩陣,揭示不同類型資訊之間的隱藏模式和關聯。為了進一步增強視覺化,我們開發了一個三維視覺化系統,將這些視角和雙聚類結果整合起來,減少資訊過載和線條交叉,這些都可能掩蓋關鍵見解。該系統使網路安全分析師能夠快速解釋和連接複雜的資料點,促進對漏洞和攻擊技術的早期辨識。我們的方法不僅提高了對CTI的理解和應用,還支援動態更新,使其成為一個可擴充的解決方案,以滿足持續的網路安全需求。;Cyber Threat Intelligence (CTI) is essential for understanding and mitigating cybersecurity threats. This paper presents a novel approach that leverages multiple-view analysis and biclustering to enhance the visualization and comprehension of CTI data. CTI contains a variety of data types, including Indicators of Compromise and Tactics, Techniques, and Procedures, which are often unstructured and fragmented, complicating the analysis process for cybersecurity professionals. Our methodology integrates multiple-view visualization with biclustering to address these challenges. Multiple-view visualization allows the examination of CTI from different perspectives, such as geographical locations, types of attacks, and affected assets. By separating data into distinct views, analysts can focus on specific aspects without the distraction of irrelevant information, thus reducing complexity and improving clarity. Biclustering, on the other hand, groups related entities into subsets based on their relationships, transforming the data into matrices that reveal hidden patterns and correlations between different types of information. To enhance the visualization further, we developed a three-dimensional visualization system that integrates these perspectives and biclustering results, minimizing information overload and line crossings that can obscure key insights. This system enables cybersecurity analysts to quickly interpret and connect complex data points, facilitating the early identification of vulnerabilities and attack techniques. Our approach not only improves the understanding and application of CTI but also supports dynamic updates, making it a scalable solution for ongoing cybersecurity needs.
    显示于类别:[資訊工程研究所] 博碩士論文

    文件中的档案:

    档案 描述 大小格式浏览次数
    index.html0KbHTML30检视/开启


    在NCUIR中所有的数据项都受到原著作权保护.

    社群 sharing

    ::: Copyright National Central University. | 國立中央大學圖書館版權所有 | 收藏本站 | 設為首頁 | 最佳瀏覽畫面: 1024*768 | 建站日期:8-24-2009 :::
    DSpace Software Copyright © 2002-2004  MIT &  Hewlett-Packard  /   Enhanced by   NTU Library IR team Copyright ©   - 隱私權政策聲明