| 一种计算机网络脆弱性评估系统的设计 |
| |
| 引用本文: | 王永杰,刘进,陈志杰,鲜明,王国玉.一种计算机网络脆弱性评估系统的设计[J].计算机工程,2006,32(17):200-202. |
| |
| 作者姓名: | 王永杰 刘进 陈志杰 鲜明 王国玉 |
| |
| 作者单位: | 国防科技大学电子科学与工程学院,长沙,410073 |
| |
| 摘 要: | 以攻击图建模方法为基础,提出了一种综合利用网络安全评估工具、模型检验工具的计算机网络脆弱性评估系统的设计方案。给出了脆弱性评估系统的总体框架结构,分析了各模块的功能特点和结构组成。该脆弱性评估系统可以分析计算机网络系统的最薄弱环节、最隐蔽被攻击路径、最易被攻击路径和最常被攻击路径,可以有效指导计算机网络系统安全措施制定与改进。
|
| 关 键 词: | 网络安全 脆弱性评估 攻击图 |
| 文章编号: | 1000-3428(2006)17-0200-03 |
| 收稿时间: | 2005-09-13 |
| 修稿时间: | 2005-09-13 |
Design of a Computer Network Vulnerability Evaluation System |
| |
| WANG Yongjie,LIU Jin,CHEN Zhijie,XIAN Ming,WANG Guoyu.Design of a Computer Network Vulnerability Evaluation System[J].Computer Engineering,2006,32(17):200-202. |
| |
| Authors: | WANG Yongjie LIU Jin CHEN Zhijie XIAN Ming WANG Guoyu |
| |
| Affiliation: | School of Electronic Science and Engineering, National University or Defence Technology, Changsha 410073 |
| |
| Abstract: | A computer network vulnerability evaluation system is designed based on attack graph modeling method, The computer network security evaluation tools and model check tools are integrated in the system. The block scheme of the computer network vulnerability evaluation system is proposed. The function and structure of all modules are analyzed in detad. The vulnerability evaluation system is able to analyze the weakest node, the most covert attack path. the most possible attack path, and the most frequent attack path. The vulnerability evaluation system can be used to establish and improve security measures of computer network systems effectively. |
| |
| Keywords: | Network security Vulnerability evaluation Attack graph |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《计算机工程》浏览原始摘要信息 |
|
点击此处可从《计算机工程》下载全文 |
