| 计算机网络安全评估建模研究 |
| |
| 引用本文: | 张 涛,胡铭曾,云晓春,张永铮. 计算机网络安全评估建模研究[J]. 通信学报, 2005, 26(12): 100-109 |
| |
| 作者姓名: | 张 涛 胡铭曾 云晓春 张永铮 |
| |
| 作者单位: | 哈尔滨工业大学,计算机网络与信息安全技术研究中心,黑龙江,哈尔滨,150001 |
| |
| 基金项目: | 国家自然科学基金资助项目(60403033),国防十五预研基金资助项目(41315.7.1) |
| |
| 摘 要: | 安全性分析研究工作需要把计算机网络与安全相关的系统资源和安全因素抽取出来建立一种面向安全性分析的安全模型。从安全需求的类别、等级和面临的主要威胁出发,分析了系统设备、访问权限、主体连接关系和弱点,从攻击者目的是提升特权的角度对攻击作了形式化的描述。针对计算机系统的安全故障树方法和网络信息系统的攻击图方法应用了这一安全分析建模工作。
|
| 关 键 词: | 计算机网络安全 安全模型 弱点 攻击 故障树 攻击图 |
| 文章编号: | 1000-436X(2005)12-0100-10 |
| 收稿时间: | 2005-10-18 |
| 修稿时间: | 2005-11-08 |
Research on computer network security analysis model |
| |
| ZHANG Tao,HU Ming-zeng,YUN Xiao-chun,ZHANG Yong-zheng. Research on computer network security analysis model[J]. Journal on Communications, 2005, 26(12): 100-109 |
| |
| Authors: | ZHANG Tao HU Ming-zeng YUN Xiao-chun ZHANG Yong-zheng |
| |
| Affiliation: | Research Center of Computer Network and Information Security Technology, Harbin Institute of Technology, Harbin 150001, China |
| |
| Abstract: | The research of security analysis needed a systemic security analysis model that was from the system resource and security factor of computer network.For the classification,rate and the main threaten of the security requirement,system devices,access privilege,host connection relation and vulnerability were analyzed,and the computer network attack from the point of view that the attacker's objective was to get privilege escalation was described.The computer system security analysis by fault tree and the network system security analysis by attack graph use the security analysis model. |
| |
| Keywords: | computer network security security model vulnerability attack fault tree attack graph |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《通信学报》浏览原始摘要信息 |
|
点击此处可从《通信学报》下载全文 |
