信息网络安全 ›› 2023, Vol. 23 ›› Issue (6): 11-21.doi: 10.3969/j.issn.1671-1122.2023.06.002

• 技术研究 • 上一篇    下一篇

面向网络安全开源情报的知识图谱研究综述

王晓狄, 黄诚, 刘嘉勇()   

  1. 四川大学网络空间安全学院,成都 610207
  • 收稿日期:2023-01-09 出版日期:2023-06-10 发布日期:2023-06-20
  • 通讯作者: 刘嘉勇 ljy@scu.edu.cn
  • 作者简介:王晓狄(1996—),男,河南,博士研究生,主要研究方向为知识图谱、自然语言处理|黄诚(1987—),男,重庆,副教授,博士,主要研究方向为网络安全、攻防技术|刘嘉勇(1962—),男,四川,教授,博士,主要研究方向为网络信息处理与威胁情报分析、数据挖掘、隐蔽通信构建及分析、虚拟社区及社交机器人自动化分析与检测
  • 基金资助:
    国家自然科学基金(61902265);国家重点研发计划(2019QY1405);国家重点研发计划(2021YFB3100500)

A Survey of Cyber Security Open-Source Intelligence Knowledge Graph

WANG Xiaodi, HUANG Cheng, LIU Jiayong()   

  1. School of Cyber Science and Engineering, Sichuan University, Chengdu 610207, China
  • Received:2023-01-09 Online:2023-06-10 Published:2023-06-20

摘要:

随着信息化的发展,网络上每天会产生大量的网络安全开源情报。然而,这些网络开源情报大多数都是多源异构的文本数据,并不能直接分析使用。因此,引入知识图谱的相关技术对其进行归纳整理,实现知识的深层次语义挖掘和智能推理分析极为重要。文章首先给出了网络安全情报知识图谱的构建过程,然后介绍网络安全知识图谱的关键技术以及国内外研究现状,包括信息抽取和知识推理,最后对知识图谱在网络安全领域中应用面临的挑战进行总结,并给出未来可能的工作方向。

关键词: 网络安全, 开源情报, 知识图谱, 信息抽取, 知识推理

Abstract:

With the development of informatization, a large amount of cyber security information is generated online every day. However, the majority of security intelligence consists of multi-source and heterogeneous text data that are challenging to directly analyze and apply. Therefore, the introduction of a knowledge graph assumes paramount significance in order to facilitate profound semantic knowledge mining and enable intelligent reasoning analysis. On this basis, this paper first described how the cybersecurity knowledge graph was built. Then, it outlined the core technologies of the knowledge graph and related research work, including information extraction and knowledge reasoning. Finally, the challenges of building a cybersecurity knowledge graph were discussed, and some directions for further research were suggested.

Key words: cyber security, open-source intelligence, knowledge graph, information extraction, knowledge reasoning

中图分类号: