基于知识推理的卫星网络态势理解

doi:10.12305/j.issn.1001-506X.2022.05.17

系统工程与电子技术 ›› 2022, Vol. 44 ›› Issue (5): 1562-1571.doi: 10.12305/j.issn.1001-506X.2022.05.17

基于知识推理的卫星网络态势理解

蚁佳才¹, 刘斌^2,*, 姚莉², 赵文涛¹

1. 国防科技大学计算机学院, 湖南长沙 410073
2. 国防科技大学信息系统工程重点实验室, 湖南长沙 410073

收稿日期:2021-01-29 出版日期:2022-05-01 发布日期:2022-05-16
通讯作者: 刘斌
作者简介:蚁佳才(1997—), 男, 硕士研究生, 主要研究方向为知识抽取、大规模数据并行处理|刘斌(1989—), 男, 讲师, 博士, 主要研究方向为知识工程、多域态势认知|姚莉(1965—), 女, 教授, 博士, 主要研究方向为智能决策、知识工程|赵文涛(1973—), 男, 教授, 博士, 主要研究方向为人工智能、信息安全
基金资助:
军内科研项目(GK20191A010279);军内科研项目(GK20191A010296)

Satellite cyber situational understanding based on knowledge reasoning

Jiacai YI¹, Bin LIU^2,*, Li YAO², Wentao ZHAO¹

1. School of Computer Science and Technology, National University of Defense Technology, Changsha 410073, China
2. Science and Technology on Information Systems and Engineering Laboratory, National University of Defense Technology, Changsha 410073, China

Received:2021-01-29 Online:2022-05-01 Published:2022-05-16
Contact: Bin LIU

摘要/Abstract

摘要：

随着太空和网络空间军事化趋势加剧, 我国太空战略面临着日益严峻的挑战。为保障太空网络安全, 目前迫切需要形成对卫星网络空间的态势理解能力。本文首先提出了太空网络态势理解需要回答的关键性问题, 基于卫星网络态势理解本体和卫星网络态势理解知识图谱, 构建推理规则, 提出基于知识的卫星网络空间态势理解分析方法, 通过对卫星网络空间态势理解知识库进行推理, 实现对卫星网络安全多源情报自动关联分析。最后, 通过案例评估验证了所提方法的正确性和有效性, 为我国天基资产保护辅助决策提供支撑。

关键词: 网络安全, 态势理解, 卫星, 知识推理

Abstract:

With the increasing trend of militarization of space and cyberspace, China's space strategy is facing increasingly serious challenges. To secure space cybersecurity, there is an urgent need to develop a situational understanding capability for satellite cyberspace. In this paper, we first propose the key questions that need to be answered for situational understanding, construct inference rules based on satellite network situational understanding ontology and satellite network situational understanding knowledge map, propose a knowledge-based analysis method for satellite cyberspace situational understanding, and realize automatic correlation analysis of multi-source intelligence for satellite cybersecurity by reasoning on satellite cyberspace situational understanding knowledge base. Finally, the correctness and effectiveness of the proposed method are verified by case evaluation, which provides support for China's space-based asset protection auxiliary decision-making.

Key words: network security, situational awareness, satellite, knowledge reasoning

中图分类号:

TP393
TP399

蚁佳才, 刘斌, 姚莉, 赵文涛. 基于知识推理的卫星网络态势理解[J]. 系统工程与电子技术, 2022, 44(5): 1562-1571.

Jiacai YI, Bin LIU, Li YAO, Wentao ZHAO. Satellite cyber situational understanding based on knowledge reasoning[J]. Systems Engineering and Electronics, 2022, 44(5): 1562-1571.

图/表 5

参考文献 30

1	UNAL B . Cybersecurity of NATO's space-based strategic assets[M]. London: Royal Institute of International Affairs, 2019.
2	TANG Z, ZHAO B K, YU W R, et al. Software defined satellite networks: benefits and challenges[C]//Proc. of the IEEE Computers, Communications and IT Applications Conference, 2014: 127-132.
3	韩晓露, 刘云, 张振江, 等. 网络安全态势感知理论与技术综述及难点问题研究[J]. 信息安全与通信保密, 2019, (7): 61- 71. doi: 10.3969/j.issn.1009-8054.2019.07.010
	HANG X L , LIU Y , ZAHNG Z J , et al. Review of the theory, technology and some difficult problems in network security situational awareness[J]. Information Security and Communications Privacy, 2019, (7): 61- 71. doi: 10.3969/j.issn.1009-8054.2019.07.010
4	STROM B. Adversarial tactics, techniques and common know-ledge ATT&CK presentation[R]. MITRE Corp., 2015.
5	贾焰, 亓玉璐, 尚怀军, 等. 一种构建网络安全知识图谱的实用方法[J]. Engineering, 2018, 4 (1): 117- 133.
	JIA Y , QI Y L , SHANG H J , et al. A practical approach to constructing a knowledge graph for cybersecurity[J]. Engineering, 2018, 4 (1): 117- 133.
6	The MITRE Corporation. Common attack pattern enumeration and classification (CAPEC)[EB/OL]. [2020-10-1]. https://capec.mitre.org/.
7	The MITRE Corporation. Common weakness enumeration (CWE)[EB/OL]. [2020-10-1]. https://cwe.mitre.org/.
8	The MITRE Corporation. Common platform enumeration (CPE)[EB/OL]. [2020-10-1]. https://cpe.mitre.org/.
9	Forum of Incident Response and Security Teams. Common vulnerability scoring system (CVSS)[EB/OL]. [2020-10-1]. https://www.first.org/cvss/.
10	The MITRE Corporation. Common vulnerabilities and exposures (CVE)[EB/OL]. [2020-10-1]. https://cve.mitre.org/.
11	FENZ S, EKELHART A. Formalizing information security knowledge[C]//Proc. of the 4th International Symposium on Information, Computer, and Communications Security, 2009: 183-194.
12	SYED Z, PADIA A, FININ T W, et al. UCO: a unified cybersecurity ontology[C]//Proc. of the Workshops at the 30th AAAI Conference on Artificial Intelligence, 2016.
13	OLTRAMARI A, CRANOR L F, WALLS R J, et al. Building an ontology of cyber security[C]//Proc. of the Conference on Semantic Technology in Intelligence, Defense and Security, 2014: 54-61.
14	IANNACONE M, BOHN S, NAKAMURA G, et al. Developing an ontology for cyber security knowledge graphs[C]//Proc. of the 10th Annual Cyber and Information Security Research Conference, 2015.
15	USSATH M , JAEGER D , CHENG F , et al. Pushing the limits of cyber threat intelligence: extending STIX to support complex patterns[M]. London: Springer, 2016: 213- 225.
16	FRANSEN F , SMULDERS A , KERKDIJK R . Cyber security information exchange to gain insight into the effects of cyber threats and incidents[J]. E&I Elektrotechnik und Informationstechnik, 2015, 132 (2): 106- 112.
17	NARAYANAN S N, GANESAN A, JOSHI K, et al. Early detection of cybersecurity threats using collaborative cognition[C]//Proc. of the IEEE 4th International Conference on Collaboration and Internet Computing, 2018: 354-363.
18	VALE A P, FERNANDEZ E B. An ontology for security patterns[C]//Proc. of the 38th International Conference of the Chilean Computer Science Society, 2019: 1-8.
19	FERNANDEZ E B . Security patterns in practice: designing secure architectures using software patterns[M]. Hoboken, NJ: Wiley, 2013.
20	BRAZHUK A . Security patterns based approach to automatically select mitigations in ontology-driven threat modelling[J]. Open Semantic Technologies for Intelligent Systems, 2020, 25 (3): 267- 272.
21	SYED R . Cybersecurity vulnerability management: a concep-tual ontology and cyber intelligence alert system[J]. Information & Management, 2020, 57 (6): 103334.
22	LIU B , YAO L , HAN D P . Harnessing ontology and machine learning for RSO classification[J]. SpringerPlus, 2016, 5, 1655. doi: 10.1186/s40064-016-3258-2
23	CAO H, WU L L, CHEN Y, et al. Analysis on the security of satellite Internet[C]//Proc. of the China Cyber Security Annual Conference, 2020: 193-205.
24	RAZA A, SOHAL P, CADDEN J, et al. Unikernels: the next stage of linux's dominance[C]//Proc. of the Workshop on Hot Topics in Operating Systems, 2019: 7-13.
25	VALLADO D A, CEFOLA P J. Two-line element sets-practice and use[C]//Proc. of the 63rd International Astronautical Congress, 2012.
26	王昊奋, 漆桂林, 陈华钧. 知识图谱: 方法、实践与应用[M]. 北京: 电子工业出版社, 2019.
	WANG H F , QI G L , CHEN H J . Knowledge graph: me-thods, practices and applications[M]. Beijing: Publishing House of Electronics Industry, 2019.
27	HORROCKS I , PATEL-SCHNEIDER P F , BOLEY H , et al. SWRL: a semantic web rule language combining OWL and RuleML[J]. W3C Member Submission, 2004, 21 (79): 1- 31.
28	MUSEN M A . The protégé project: a look back and a look forward[J]. AI Matters, 2015, 1 (4): 4- 12. doi: 10.1145/2757001.2757003
29	宗红, 陈义庆, 王淑一, 等. 一种自主恢复轨控故障时的星敏感器定姿方法[P]. 中国: 200710301591.6, 2008.
	ZONG H, CHEN Y Q, WANG S Y, et al. A method for fixing the attitude of a star-sensitive device during autonomous recovery from orbital control failure[P]. China: 200710301591.6, 2008.
30	黄琳. 一种卫星姿态快速挽救方法[P]. 中国: 200810226836.8, 2009.
	HUANG L. A fast rescue method for satellite attitude[P]. China: 200810226836.8, 2009.

[1]	封皓君, 段立, 张碧莹, 刘海潮. 双向循环进化的实体链接及知识推理框架[J]. 系统工程与电子技术, 2022, 44(9): 2878-2885.
[2]	李灵慧, 李伟, 靳瑾, 匡麟玲. 5G系统对大规模NGSO卫星系统干扰分析等效建模方法[J]. 系统工程与电子技术, 2022, 44(8): 2635-2644.
[3]	骆天溯, 赵灵峰, 冯蕴雯, 薛小锋, 路成. 基于METRIC理论的超大规模卫星星座多级备份策略[J]. 系统工程与电子技术, 2022, 44(7): 2181-2190.
[4]	鲁祖坤, 郭海玉, 宋捷, 孙一凡, 李柏渝. 抗干扰型卫星导航接收机的最优前端增益[J]. 系统工程与电子技术, 2022, 44(7): 2270-2275.
[5]	王鹏博, 贺成艳, 杨倩倩, 佟文华. 窄带干扰信号对北斗三号B2信号质量的影响[J]. 系统工程与电子技术, 2022, 44(7): 2286-2292.
[6]	辛立强, 张超, 赵灵芝, 刘建平. 面向复杂关联测控需求的冲突规避调度算法[J]. 系统工程与电子技术, 2022, 44(5): 1581-1588.
[7]	韩明仁, 王玉峰. 基于强化学习的全电推进卫星变轨优化方法[J]. 系统工程与电子技术, 2022, 44(5): 1652-1661.
[8]	靳鹏, 唐晓茜. 考虑合成机制的多星应急任务调度[J]. 系统工程与电子技术, 2022, 44(4): 1270-1281.
[9]	王瑞松, 马若飞, 王琦, 钟志聪, 刘功亮, 张杨. 卫星网络时隙分配算法与路由规划优化[J]. 系统工程与电子技术, 2022, 44(4): 1343-1353.
[10]	程一凡, 洪涛, 丁晓进, 张更新. 低轨卫星物联网场景下基于吸引子选择算法的多星负载均衡算法[J]. 系统工程与电子技术, 2022, 44(4): 1354-1363.
[11]	张心宇, 刘源, 宋佳凝. 基于LSTM神经网络的短期轨道预报[J]. 系统工程与电子技术, 2022, 44(3): 939-947.
[12]	付栋, 彭竞, 马明, 陈飞强, 欧钢. 基于钟差检验的GNSS授时欺骗检测与识别[J]. 系统工程与电子技术, 2022, 44(3): 948-955.
[13]	刘一, 周威, 金际航, 边少锋, 谷守周. 基于Mean Shift模型的多粗差探测RAIM算法[J]. 系统工程与电子技术, 2022, 44(2): 644-650.
[14]	唐一强, 杨霄鹏, 朱圣铭. 基于注意力机制的混合CNN-BiLSTM低轨卫星信道预测算法[J]. 系统工程与电子技术, 2022, 44(12): 3863-3870.
[15]	刘高赛, 姜兴龙, 李华旺, 梁广. 基于位置感知的大规模LEO星座分布式路由算法[J]. 系统工程与电子技术, 2022, 44(11): 3529-3536.

基于知识推理的卫星网络态势理解

Satellite cyber situational understanding based on knowledge reasoning

RichHTML

PDF (PC)

可视化

摘要/Abstract

引用本文

使用本文

图/表 5

参考文献 30

相关文章 15

编辑推荐

Metrics

本文评价