Vulnerability Data Fusion Method Based on the D-S theory of Evidence

Abstract

A fusion algorithm for network security situational awareness is proposed based on D-S theory of evidence, processing the vulnerability data from network scanning and host scanning. Though normalizing the vulnerability data, we constructed the corresponding basic probability assignment and fusion the data, fully used the redundancy and complementarity of multisource data, and integrated the results got by different scanning means. The results showed that this method obtained more comprehensive and reliable results.