ZHANG Hang.A Network Security Operation and Maintenance Method for Civil Aviation Air Traffic Management Systems based on Large Language Models[J].Journal of Chengdu University of Information Technology,2025,40(06):824-828.[doi:10.16836/j.cnki.jcuit.2025.06.013]
基于大语言模型的民航空管系统网络安全运维方法
- Title:
- A Network Security Operation and Maintenance Method for Civil Aviation Air Traffic Management Systems based on Large Language Models
- 文章编号:
- 2096-1618(2025)06-0824-05
- Keywords:
- multi-level protection scheme; civil aviation air traffic management system; large language model; automated inspection
- 分类号:
- TP309
- 文献标志码:
- A
- 摘要:
- 民航空管系统网络安全运维面临设备种类多、技术更新快、空管专用设备检查适配难等问题。在大语言模型的基础上,探索一条全新的智能化运行维护方法。通过引入大语言模型,提出一个能够智能解析安全标准、自动生成专用检查列表与程序、执行批量检查并输出合规报告的智能化运维方法。针对民航空管核心设备(如甚高频设备、管制自动化系统)设计了专项检查逻辑。实验结果与传统的人工检查相比,可将单台服务器的平均检查时间从原来的60 min左右缩短到15 min左右,效率提高了将近4倍,配置检查的准确率可以达到94.3%,误报率降低到3.2%、漏报率降低到2.5%。该方法显著提升了民航空管系统网络安全运维的效率、准确性与完整性,为空管系统的智能化安全运维提供了有效解决方案。
- Abstract:
- The cybersecurity operations and maintenance of civil aviation air traffic management(ATM)systems face challenges such as the wide variety of equipment, rapid technological updates, and difficulties in inspecting and adapting specialized ATM devices. Based on large language models, this paper explores a novel intelligent operational maintenance methodology. By introducing large language models, an intelligent operational maintenance method is proposed, which can intelligently parse security standards, automatically generate specialized inspection checklists and procedures, execute batch inspections, and output compliance reports. Specialized inspection logic is designed for core ATM equipment(e.g., VHF equipment, Air Traffic Control Automation Systems). Experimental results show that, compared with traditional manual inspections, the average inspection time per server is reduced from approximately 60 minutes to about 15 minutes, increasing efficiency by nearly four times. The accuracy rate for configuration checks reaches 94.3%, with the false positive rate reduced to 3.2% and the false negative rate reduced to 2.5%. This method significantly enhances the efficiency, accuracy, and comprehensiveness of cybersecurity operations and maintenance in civil aviation ATM systems, providing an effective solution for intelligent security operations and maintenance in air traffic management.
参考文献/References:
[1] 张家年.国家安全保障视角下安全情报与战略抗逆力融合研究——伊朗核设施遭“震网”病毒攻击事件的启示[J].情报杂志,2018,37(2):8-14.
[2] 李栋.震网病毒事件浅析及工控安全防护能力提升启示[J].网络安全技术与应用,2019(1):9-10.
[3] 弭相辰.从“震网病毒”与乌克兰停电事件看电力企业信息安全[J].大众用电,2016(S2):50-56.
[4] 黄海波,洪流,于长钺,等.乌克兰停电事件对我国工控系统信息安全的启示[J].标准科学,2016(9):87-90.
[5] 刘念,余星火,张建华.网络协同攻击:乌克兰停电事件的推演与启示[J].电力系统自动化,2016,40(6):144-147.
[6] 全国人民代表大会常务委员会.中华人民共和国网络安全法[Z].2016-11-07.
[7] GB/T22239-2019,网络安全等级保护基本要求[S].
[8] GB/T25070-2019,网络安全等级保护安全设计技术要求[S].
[9] GB/T28448-2019,网络安全等级保护测评要求[S].
[10] 国务院令第745号,关键信息基础设施安全保护条例[S].
[11] 周渊,王伟平,孟丹.基于深度学习的恶意代码检测方法综述[J].计算机学报,2019,42(5):1077-1101.
[12] 贾焰,韩伟红,李爱平,等.基于大数据和人工智能的网络安全态势感知技术研究[J].计算机研究与发展.2018,55(9):1903-1918.
相似文献/References:
[1]戢浩源,殷汶浩.基于提示词工程的民航空管零信任策略编排智能体研究[J].成都信息工程大学学报,2025,40(06):819.[doi:10.16836/j.cnki.jcuit.2025.06.012]
JI Haoyuan,YIN Wenhao.Research on Intelligent Agent for Civil Aviation Air Traffic Control Zero-Trust Policy Orchestration based on Prompt Engineering[J].Journal of Chengdu University of Information Technology,2025,40(06):819.[doi:10.16836/j.cnki.jcuit.2025.06.012]
备注/Memo
收稿日期:2025-06-30
通信作者:张航.E-mail:772510748@qq.com