计算机应用与软件
計算機應用與軟件
계산궤응용여연건
COMPUTER APPLICATIONS AND SOFTWARE
2014年
9期
304-308
,共5页
网络安全%态势评估%业务风险模型%威胁模型%D-S理论
網絡安全%態勢評估%業務風險模型%威脅模型%D-S理論
망락안전%태세평고%업무풍험모형%위협모형%D-S이론
Networksecurity%Situationassessment%Businessriskmodel%Threatmodel%D-Stheory
网络安全事件的多样性和复杂性使得传统方法难以对网络安全态势作出实时动态的评估。鉴于此,提出一种面向网络实时业务的网络安全态势评估方法。尝试以网络实时业务为切入点来降低评估复杂度,实时动态地评估网络安全态势。基本思路是采用层次化方法建立实时业务风险模型,采用攻击树方法建立攻击威胁模型,将这两个模型作为评估的数据支撑;对D-S证据理论合成公式进行改进;利用改进后的D-S证据理论实现上述两个模型的关联,进而得出实时的评估结果。最后通过一个测试实验对评估方法进行验证与分析。
網絡安全事件的多樣性和複雜性使得傳統方法難以對網絡安全態勢作齣實時動態的評估。鑒于此,提齣一種麵嚮網絡實時業務的網絡安全態勢評估方法。嘗試以網絡實時業務為切入點來降低評估複雜度,實時動態地評估網絡安全態勢。基本思路是採用層次化方法建立實時業務風險模型,採用攻擊樹方法建立攻擊威脅模型,將這兩箇模型作為評估的數據支撐;對D-S證據理論閤成公式進行改進;利用改進後的D-S證據理論實現上述兩箇模型的關聯,進而得齣實時的評估結果。最後通過一箇測試實驗對評估方法進行驗證與分析。
망락안전사건적다양성화복잡성사득전통방법난이대망락안전태세작출실시동태적평고。감우차,제출일충면향망락실시업무적망락안전태세평고방법。상시이망락실시업무위절입점래강저평고복잡도,실시동태지평고망락안전태세。기본사로시채용층차화방법건립실시업무풍험모형,채용공격수방법건립공격위협모형,장저량개모형작위평고적수거지탱;대D-S증거이론합성공식진행개진;이용개진후적D-S증거이론실현상술량개모형적관련,진이득출실시적평고결과。최후통과일개측시실험대평고방법진행험증여분석。
Thecomplexityanddiversityofnetworkssecurityeventsmakeitdifficulttogivereal-timeanddynamicassessmentonnetworks security situation.In view of this,in this paper we propose an assessment approach for networks security situation oriented to real-time services of networks.It tries to use real-time network business as the entry point to reduce the complexity of assessment and thus achieves real-time and dynamic assessment on networks security situation.The basic idea is that to adopt hierarchical approach to build real-time business risk model and to use attacking tree method to build attacking threat model.We use these two models as the data support of the assessment,and make improvement on D-S evidence theory composition formula.The improved D-S evidence theory is employed to implement the association between two models mentioned above,and in turn the real-time assessment results are obtained.At last,the assessment method is verified and analysed through a test experiment.
