Research And Implementation Of Cyber Security Risk Visualization System

The frequent occurrence of network risk events is the main factor affecting network security.The combination of network risk detection and visualization technology can monitor network risk events in real time,locate network vulnerabilities,and comprehensively grasp the network security status to achieve proactive defense.This article designs a network security risk visualization system.It first analyzes a large amount of risk data mines the correlation between each feature in the network basic information and the risk and builds a network security risk analysis model based on actual needs to obtain the best risk.Characteristic data.Secondly,through the visualization technology,the risk characteristic data is converted into graphics and presented on the screen,so that the user can set the custom query conditions,and complete the visual presentation based on the query conditions.Finally,the system assists network administrators to master the overall network security status,monitor network security risk events in real time,and predict future security postures,while providing a basis for network administrators to make accurate security decisions.The main work can be summarized as:(1)Constructed an embedded risk analysis model based on random forest.The model mainly selects a random forest classifier as the base model of the embedded feature selection algorithm,randomly samples the risk data set to generate multiple data subsets,and then The data subset is input into the random forest classifier for repeated and repeated training to complete the feature selection automatically,and at the same time evaluate the model performance,remove the features that are not related to the risk analysis and redundant features,and filter out the features that are more relevant to the risk analysis.Finally,two sets of performance comparison experiments were conducted to verify the effectiveness of the model on the real data set.(2)Designed a cybersecurity risk visualization system,which combines cybersecurity risk analysis with visualization technology,based on the subset of the best risk characteristic data extracted by the risk analysis model,and corresponding to the network security situation according to different data characteristics Module and network test evaluation module.Based on the visualization platform,in the network security situation module,the national network assets,network equipment,product use and application systems and other security risk conditions are presented centered on the map;in the network test and evaluation module,the national network distribution is presented in the form of maps and charts Overview,national network test assessment and risk assessment,provincial network test assessment and risk assessment data.(3)A visual system that meets user-defined interactions has been established.In order to facilitate the user's use and meet the differences in their attention to different analysis points in different periods and different situations,based on the dva environment,the react framework is used to design user interaction modules to implement the user's setting of custom query conditions and complete the query-based conditions Visual presentation.Finally,the network security risk visualization system was tested in three aspects:data reading,data display,and performance testing.The results showed that the system read data normally,display data accurately,run at high speed,and have stable system performance.