Abstract
The identification, analysis and application of vulnerabilities and weaknesses exposed after attacks on devices in the IoT security field are imminent. It is very important to combine the concepts of IoT security and knowledge graph to build the IoT security knowledge base and apply it to the defense and attack of IoT devices. From this we propose an ontology to build an IoT security knowledge graph. And it carries on the method of knowledge extraction and threat analysis. IoT security knowledge graph is extracted from several widely used knowledge databases and stored in the graph database. First, build the ontology of the IoT security field based on the five-tuple model. Secondly, natural language processing technique is used to process and analyze IoT security events. The extracted entity will be linked to the IoT security knowledge graph and added as new knowledge. Finally, based on the confidence, conduct horizontal reasoning and analysis on the IoT security knowledge graph. And present sample cases to demonstrate the practical usage of the method. Realize the gradual intelligence of threat analysis in the field of IoT security.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Similar content being viewed by others
References
Mozzaquatro, B., Agostinho, C., Goncalves, D.: An ontology-based cybersecurity framework for the internet of things. Sensors 18(9), 3053 (2018)
Hemberg, E., Kelly, J., Shlapentokh-Rothman, M.: BRON – linking attack tactics, techniques, and patterns with defensive weaknesses, vulnerabilities and affected platform configurations (2020)
Tao, L., Yuanbo, G., Ankang, J.: Triple extraction of network security knowledge based on fusion against active learning. J. Commun. 41(10), 80–91 (2020)
Yan, J., Yulu, Q., Huaijun, S.: A practical approach to constructing a knowledge graph for cybersecurity. Engineering 4(1), 53–60 (2018)
Zhu, L., Zhang, Z., Xia, G.: Research on vulnerability ontology model. In: ITAIC 2019, Chongqing, China, pp. 657–661 (2019)
Zhengjun, L., Zhi, S., Jianfeng, C.: STIX-based network security knowledge graph ontology modeling method, pp. 152–157 (2020)
Jiayi, P., Yong, F., Cheng, H.: Research on named entity recognition in the information security field based on deep active learning. J. Sichuan Univ. 56(03), 457–462 (2019)
Yan, J., Yulu, Q., Huaijun, S.: A practical approach to constructing a knowledge graph for cybersecurity. J. Eng. 4(1), 53–60 (2018)
Jiang, Y., Zhao, T., Chai, Y., Gao, P.: Bidirectional LSTM-CRF models for keyword extraction in Chinese sport news, vol. 11430, pp. 114300H–114300H-7 (2020)
Qin, S., Chow, K.P.: Automatic analysis and reasoning based on vulnerability knowledge graph. In: Ning, H. (ed.) CyberDI/CyberLife -2019. CCIS, vol. 1137, pp. 3–19. Springer, Singapore (2019). https://doi.org/10.1007/978-981-15-1922-2_1
Yulu, Q., Rong, J., Yan, J.: Attack analysis framework for cyber-attack and defense test platform. Electronics 9(9), 1413 (2020)
Li, K., Zhou, H., Tu, Z., Feng, B.: CSKB: a cyber security knowledge base based on knowledge graph. In: Yu, S., Mueller, P., Qian, J. (eds.) SPDE 2020. CCIS, vol. 1268, pp. 100–113. Springer, Singapore (2020). https://doi.org/10.1007/978-981-15-9129-7_8
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2021 Springer Nature Switzerland AG
About this paper
Cite this paper
Zhang, S., Zhang, M., Li, H., Bai, G. (2021). Threat Analysis of IoT Security Knowledge Graph Based on Confidence. In: Jia, W., et al. Emerging Technologies for Education. SETE 2021. Lecture Notes in Computer Science(), vol 13089. Springer, Cham. https://doi.org/10.1007/978-3-030-92836-0_22
Download citation
DOI: https://doi.org/10.1007/978-3-030-92836-0_22
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-030-92835-3
Online ISBN: 978-3-030-92836-0
eBook Packages: Computer ScienceComputer Science (R0)