Study and Implementation of United Platform of Network Security Management
江苏软件和集成电路业专项基金资助项目统一网络安全管理平台的研究与实现*

As the wildly use of heterogeneous security devices(e.g.firewalls,IDS's etc.) generates huge amounts of unreliable security events,which are difficult to manage,united platform of network security management is proposed.Using risk assessment and alerts correlation,the platform can analyze the risk of network in real-time,and reduce false positive ratio and false negative ratio effectively.After introducing the framework of the platform and functions of each module, the implementation of event pretreatment,real-time risk assessment and alert correlation is discussed.