%0 Journal Article
%T APT安全检测体系架构及关键技术研究<br>The Study of APT Security Detection Architecture and Key Technologies
%A 刘怡文
%A 黄琼
%A 余静
%A 张子龙
%J Journal of Security and Safety Technology
%P 24-29
%@ 2330-4685
%D 2015
%I Hans Publishing
%R 10.12677/JSST.2015.33005
%X <div style=\"text-align:justify;\">
	<span style=\"line-height:1.5;\">本文分析了现有APT攻击检测技术及存在的问题，提出了APT安全检测体系架构和APT检测的关键技术，给出了APT时域关联规则挖掘算法，采用大数据分析技术构建了安全知识库；并提出了基于分类的APT攻击检测方法。<br />
In this paper, by analyzing some drawbacks of the existing APT attack detection technology, APT security detection architecture and its key technologies have been proposed. Among this, a mining algorithm for APT time-domain association rule was given, and the security knowledge base was created using large-data analysis technology. Furthermore an APT attack detection method based on classification was proposed, which occupied significant roles in the APT security detection architecture.</span><span style=\"line-height:1.5;\"></span> 
</div>
%K APT攻击，大数据分析，数据挖掘，知识发现，攻击检测<br>APT Attack
%K Large-Data Analysis
%K Data Mining
%K Knowledge Discovery
%K Attack Detection
%U http://www.hanspub.org/journal/PaperInformation.aspx?PaperID=16042