0


NORIA-O:ICT系统中异常检测和事件管理的本体论

NORIA-O: An Ontology for Anomaly Detection and Incident Management in ICT Systems
课程网址: https://videolectures.net/eswc2024_tailhadat_anomaly_detection/  
主讲教师: Lionel Tailhardat
开课单位: 2024年上海世博会
开课时间: 2024-06-18
课程语种: 英语
中文简介:
大规模信息和通信技术(ICT)系统会导致处理级联故障和检测多个服务和网络层上发生的复杂恶意活动等困难情况。对于网络监控,在确保高标准服务质量和安全性的同时管理这些情况,需要全面了解通信设备是如何互连和运行的。然而,信息分散在异构数据源中,这引发了信息集成的挑战。现有的数据模型能够表示计算资源及其分配方式。然而,到目前为止,还没有模型来描述网络基础设施的结构、动态和功能方面之间的相互依赖关系。在本文中,我们提出了与网络和网络安全专家共同开发的NORIA本体,用于描述基础设施、其事件、在事件管理过程中执行的诊断和修复操作。描述虚拟故障的用例展示了该本体如何对复杂情况进行建模,并作为异常检测和根本原因分析的基础。
课程简介: Large-scale Information and Communications Technology (ICT) systems give rise to difficult situations such as handling cascading failures and detecting complex malicious activities occurring on multiple services and network layers. For network supervision, managing these situations while ensuring the high-standard quality of service and security requires a comprehensive view on how communication devices are interconnected and are performing. However, the information is spread across heterogeneous data sources which triggers information integration challenges. Existing data models enable to represent computing resources and how they are allocated. However, to date, there is no model to describe the inter-dependencies between the structural, dynamic, and functional aspects of a network infrastructure. In this paper, we propose the NORIA ontology that has been developed together with network and cybersecurity experts in order to describe an infrastructure, its events, diagnosis and repair actions performed during incident management. A use case describing a fictitious failure shows how this ontology can model complex situations and serve as a basis for anomaly detection and root cause analysis. 
关 键 词: ICT系统; 异常检测; 事件管理; 本体论
课程来源: 视频讲座网
数据采集: 2024-08-10:liyq
最后编审: 2024-09-29:liyy
阅读次数: 9

纠错/补充/评论/留言
评论/留言 纠错/补充
验证算术题: 9 + 7 =