吉林大学学报(信息科学版) ›› 2024, Vol. 42 ›› Issue (2): 366-371.

• • 上一篇    下一篇

基于 XGBoost 算法的内部网络安全威胁检测方法 

丁梓轩, 陈 国   

  1. 南京医科大学附属儿童医院 信息科, 南京 210008
  • 收稿日期:2023-03-23 出版日期:2024-04-10 发布日期:2024-04-12
  • 作者简介:丁梓轩(1990— ), 男, 南京人, 南京医科大学附属儿童医院助理工程师, 主要从事网络建设和网络安全研究, (Tel)86- 13770710904(E-mail)dingzx333@ outlook. com。
  • 基金资助:
    江苏省妇幼保健协会科研课题基金资助项目(FYX202201) 

Threat Detection Method of Internal Network Security Based on XGBoost Algorithm

DING Zixuan, CHEN Guo   

  1. Information Department, Children's Hospital of Nanjing Medical University, Nanjing 210008, China
  • Received:2023-03-23 Online:2024-04-10 Published:2024-04-12

PDF (PC)

7

摘要: 针对内部网络安全威胁节点成因多、 特征难捕捉问题, 提出一种基于 XGBoost 算法的内部网络安全威胁 检测方法。 以内部网络社区间的状态差异作为指标, 计算不同社区类型内节点的边权重, 查找与目标值存在 关联性的节点。 经多次分配提取特征值, 将其作为初始值输入 XGBoost 决策树中, 构建威胁性特征目标函数, 求解每个节点对应的泰勒系数, 实现内部网络安全威胁检测。 实验结果表明, 所提方法特征提取精准度高, 在 多种网络攻击条件下均能实现精准检测。

关键词: XGBoost 算法, 安全威胁检测, 目标函数, 泰勒系数, 网络社区

Abstract: Aiming at the many causes and difficult features of internal network security threat nodes, an internal network security threat detection method based on XGBoost algorithm is proposed. Using the state differences between the internal network communities as an indicator, the edge weights of the nodes within different community types are calculated to find the nodes associated with the target values. Eigenvalues extracted through multiple assignments are taken as the initial input value XGBoost decision tree to construct the threat feature objective function, solve the corresponding Taylor coefficient of each node, and realize internal network security threat detection. The experimental data show that the proposed method has high feature extraction accuracy and can achieve accurate detection under various network attack conditions.

Key words: XGBoost algorithm, security threat detection, objective function, taylor coefficient; network community 

中图分类号: 

  • TP147
版权所有 © 《吉林大学学报(信息科学版)》编辑部
地址:长春市东南湖大路5372号(130012) 电话:+86-431-5152552 E-mail: nhxb@jlu.edu.cn
本系统由北京玛格泰克科技发展有限公司设计开发