Research And Implementation Of Technique On Construction Of Cyber Security Knowledge Base For Vulnerability Database

Traditional enterprises are developing towards mobile,online and date-oriented.The problems related to cyber security directly affect the development of various industries.Building a perfect cyber security knowledge base can provides the basis of knowledge for these specific applications,such as intrusion detection,situational awareness.It is an effective method which can ensure information security.There are some structured cyber security knowledge bases and there is also a lot of unstructured information related to cyber security on the internet.It is of great significance to study how to use these existing information related to cyber security to construct a knowledge base for cyber security.Ontology for cyber security is the basis of construction of knowledge base.This paper analyzes the relevant ontology in the field of cyber security.Then combining with the characteristics of existing data source about cyber security,we extract some important concepts from concept collection to construct a collection of core concept.The concept collection comes from existing ontology.Next we determine the relationships between concepts and attributes of each concept.Finally we construct an ontology for cyber security which is suitable for characteristics of existing data source.Based on the ontology,we analyzed two specific attack scenarios.On the basis of constructed domain ontology,this paper studies the related technologies about construction of cyber security knowledge.We focus on how to extract relevant entities from the text related to cyber security.In this paper,a rule-based method is used to identify the consequence and mean.While for operating system,software and file,we construct an entity dictionary,dictionary related features are introduced into the training process of model.Finally,result of experiment proves that the introduction of the dictionary enhances the recognition effect of the naming entity about cyber security.Finally,we designs and realizes system of cyber security knowledge base.Whole system includes two subsystems: knowledge construction and knowledge display.The subsystem of knowledge construction is mainly responsible for integrating the existing data sources and extracting structured knowledge from unstructured text.The subsystem of knowledge display mainly provides the visualization function of the knowledge base.