At present, network threats have entered the era of unknown threats. However, traditional network security is based on “Maginot” static passive defense, which lacks autonomy and endogenous security ability of self evolution. The unknown threats can only be remedied after-wards by “patching”. Yet, this method is often accompanied by huge losses, and new ideas should be sought. The network security protection system has striking similarities with the human immune system. The immune system does not require prior knowledge of viruses, has strong learning and deduction ability, and is born with the ability to inactivate unknown viruses. Inspired by immune system, with “unknown threat” as the core and “artificial immunity” as the innovative means, this research focused on four key scientific issues, including the evolution mechanism of network security system, network adaptive trusted transmission conditions, the rapid discovery mechanism of unknown threat, and the rapid response strategy of unknown threat. Meanwhile, a basic theory, three key technologies, and a prototype system were studied in this paper. Through the research on new network architecture and basic theory based on immunity for endogenous security, the mRNA immune-based trusted network addressing and routing control technology, the large-scale dynamic trusted behavior analysis and unknown network threat discovery technology, and the immune-based network dynamic risk assessment and control technology, the traditional “patch” passive defense network security technology bottleneck will be broken, thereby laying the basic theory and method of the new network system supported by endogenous security. Finally, by constructing a new immune-based network prototype system for endogenous security, the research results were technically verified, and the proposed theories and methods can be further improved according to the verification results. Through the above research, the following five innovations have been achieved: 1) the cyberspace security immune architecture for endogenous security, 2) the mRNA immune-based trusted network addressing and routing control method, 3) the adaptive discovery method of unknown network threats based on gene evolution, 4) the real-time quantitative calculation method of network dynamic risk based on human body temperature warning mechanism, 5) the rapid dynamic feedback iterative network risk control method based on specific immunity. The research results have important theoretical significance and practical application value for scientific research, technology research, and industrial development of cyberspace security protection. © 2023 Editorial Department of Journal of Sichuan University. All rights reserved.
