电讯技术
電訊技術
전신기술
Telecommunication Engineering
2015年
9期
1025-1030
,共6页
李方伟%黄卿%朱江%张海波
李方偉%黃卿%硃江%張海波
리방위%황경%주강%장해파
网络安全%态势感知%项目反应理论%风险态势评估%层次化
網絡安全%態勢感知%項目反應理論%風險態勢評估%層次化
망락안전%태세감지%항목반응이론%풍험태세평고%층차화
network security%situational awareness%item response theory%risk assessment%hierarchical model
为提高传统网络风险评估方法的准确性,针对大部分网络风险评估方法未考虑攻击能力值的问题,提出了一种基于项目反应理论的实时网络风险评估方法。该方法利用项目反应理论引入的攻击能力值参数以及服务安全等级参数,对传统攻击威胁值和攻击成功概率计算方法进行改进,并采用三标度层次分析法构建出更准确的服务重要性权重,最终获得符合网络环境的评估态势。仿真结果表明:该方法可以提高评估结果的准确度,并实时地绘制更符合真实网络环境的安全态势图。
為提高傳統網絡風險評估方法的準確性,針對大部分網絡風險評估方法未攷慮攻擊能力值的問題,提齣瞭一種基于項目反應理論的實時網絡風險評估方法。該方法利用項目反應理論引入的攻擊能力值參數以及服務安全等級參數,對傳統攻擊威脅值和攻擊成功概率計算方法進行改進,併採用三標度層次分析法構建齣更準確的服務重要性權重,最終穫得符閤網絡環境的評估態勢。倣真結果錶明:該方法可以提高評估結果的準確度,併實時地繪製更符閤真實網絡環境的安全態勢圖。
위제고전통망락풍험평고방법적준학성,침대대부분망락풍험평고방법미고필공격능력치적문제,제출료일충기우항목반응이론적실시망락풍험평고방법。해방법이용항목반응이론인입적공격능력치삼수이급복무안전등급삼수,대전통공격위협치화공격성공개솔계산방법진행개진,병채용삼표도층차분석법구건출경준학적복무중요성권중,최종획득부합망락배경적평고태세。방진결과표명:해방법가이제고평고결과적준학도,병실시지회제경부합진실망락배경적안전태세도。
In order to improve the accuracy of traditional risk assessment methods and solve the problem that most of risk assessment methods did not consider attack ability,this paper puts forward a risk assess-ment method for network security based on item response theory(IRT). Firstly,the attack ability intro-duced by IRT and the service security level is used to calculate the threat of attack and the success proba-bility of attack. Secondly,the three-scale analytic hierarchy process is adopted to calculate the importance weight of service accurately. Finally,the risk situation graphs are generated by the improved method. The simulation results show that this method can improve the accuracy of evaluation and get a more realistic network risk situation graph in real-time.
