Go home now Header Background Image
Submission Procedure
share: |
Follow us
Volume 25 / Issue 3

available in:   PDF (815 kB) PS (593 kB)
Similar Docs BibTeX   Write a comment
Links into Future
DOI:   10.3217/jucs-025-03-0203


Ontology and Weighted D-S Evidence Theory-Based Vulnerability Data Fusion Method

Xiaoling Tao (Guilin University of Electronic Technology, China)

Liyan Liu (Guilin University of Electronic Technology, China)

Feng Zhao (Guilin University of Electronic Technology, China)

Yan Huang (Georgia State University, USA)

Saide Zhu (Georgia State University, USA)

Yi Liang (Georgia State University, USA)

Abstract: With the rapid development of high-speed and large-scale complex network, network vulnerability data presents the characteristics of massive, multi-source and heterogeneous, which makes data fusion become more complex. Although existing data fusion methods can fuse multi-source data, they do not consider that the multisource data may affect the accuracy of fusion result. To solve this problem, we propose an ontology and weighted D-S evidence theory-based vulnerability data fusion method. In our method, we utilize ontology to describe the network vulnerability semantically and construct the network vulnerability ontology hierarchically. Then we use weighted D-S evidence theory to perform the operation of probability distribution and fusion processing. Besides, we simulate our method on MapReduce parallel computing platform. The experiment results show that our method is more effective and accurate compared with existing fusion approaches using single detection tool and traditional D-S evidence theory.

Keywords: D-S evidence theory, data fusion, network vulnerability, ontology

Categories: G.1.0, I.6.0, I.6.4, J.2