Research And Application Of Security Threat Intelligence Technology In E-government Website

With the rapid development of network technology and the informationization of the traditional government official,there're numerous of Internet attacks and threats showing the trends of persistence,diversity and expansion,the attacks aiming at the infrastructure and government sites in our country are oftenly-appeared.The traditional passive detections which work inside the system like fire wall,intrusion detection and anti-virus are being stretched thin.The threat intelligence technology reformed the traditional protection mode,which based on passive detection,spots the potential security threats in advance by actively collecting,analyzing and evaluating relevant data,and sharing threat intelligence.Based on the demand of external network security threat monitoring of E-government system,this thesis studies the security threat analysis technology of government website based on threat intelligence technology.The main works are as follows:(1)This thesis established a security threat index system for E-government websites.Based on the research of the existing safety index system,comprehensively considered and analyzed the threats and its' properties faced by the E-government website system,this index system divided the E-government website security threats into four dimensions according to the differences of the source of security threats and perspectives.These four dimensions are real time security,historical security,website environment and attack risk.Each dimension was divided into different sub-indicators and the definition of the sub indicators are clear,made it easy to collect,analyze,and quantify.(2)This thesis proposed a Web security threat assessment model based on fuzzy analytical hierarchy process.This assessment model uses the assess strategy of “from bottom to top,from local to global”,based on the security threat index system established by this thesis,used quantitative and qualitative combined multi-factor decision-making approach as well as fuzzy comprehensive evaluation method to calculate threat index in each layer,is suitable for analyze and evaluate of multi-factor system with hierarchical structure.(3)This thesis designed and implemented a E-government website threat intelligence monitoring and detection prototype system,gave out architecture and work flow of the system.Uses the security threat index system and the threat assessment model constructed in this thesis to evaluate the security threat of website,implemented the e-government website threat intelligence monitoring and detection prototype system,which including threat information collection module,threat analysis module and interface display module,and carried out series experiments and results analysis.The results of the experiments indicated that the security threat index system can reflect the security threats of the website comprehensively,the proposed website security threat assessment model can effectively evaluate and quantify the security threats of the website,which is basically matched with the actual test situation and is reasonable.The system can be a comprehensive and complete assessment of the E-governmet website security situation and the results to achieve an intuitive display.The research results of this thesis are of great significance to the website security assessment and have a wide application prospects.