| 基于攻击图节点概率的网络安全度量方法 |
| |
| 引用本文: | 李庆朋,王布宏,王晓东,张春明.基于攻击图节点概率的网络安全度量方法[J].计算机应用研究,2013,30(3):906-908. |
| |
| 作者姓名: | 李庆朋 王布宏 王晓东 张春明 |
| |
| 作者单位: | 1. 空军工程大学 信息与导航学院,西安,710077
2. 空军西安飞行学院,西安,710077 |
| |
| 基金项目: | 陕西省自然科学基础研究基金资助项目(2010JM8004) |
| |
| 摘 要: | 为了保护网络中关键信息资产, 评估分析网络的整体安全性, 提出了一种基于攻击图节点概率的网络安全度量方法。该方法改进了原子攻击节点自身概率的计算模型, 引入累积可达概率, 在此基础上, 研究了网络安全风险评估模型。实验结果表明, 所提评估方法能够准确地评估目标状态的安全级别和网络的整体风险。
|
| 关 键 词: | 网络安全 攻击图 原子攻击 累积可达概率 |
Network security assessment based on probabilities of attack graph nodes |
| |
| LI Qing-peng,WANG Bu-hong,WANG Xiao-dong,ZHANG Chun-ming.Network security assessment based on probabilities of attack graph nodes[J].Application Research of Computers,2013,30(3):906-908. |
| |
| Authors: | LI Qing-peng WANG Bu-hong WANG Xiao-dong ZHANG Chun-ming |
| |
| Affiliation: | 1. Institute of Information & Navigation, Air Force Engineering University, Xi'an 710077, China; 2. Air Force Flight Academy of Xi'an, Xi'an 710077, China |
| |
| Abstract: | To protect critical information resources in networked environment and evaluate the overall security of network, this paper paper proposed a approach to network security assessment based on probabilities of attack graph nodes. By improving individual probability's computational model of atomic attack and introducing cumulative reachable probability of nodes in the attack graph, it proposed the assessment model of network security risk. Experimental results show that the proposed approach can accurately assess the security level of target states and overall security risk of network. |
| |
| Keywords: | network security attack graph atomic attack cumulative reachable probability |
| 本文献已被 CNKI 万方数据 等数据库收录! |
| 点击此处可从《计算机应用研究》浏览原始摘要信息 |
|
点击此处可从《计算机应用研究》下载全文 |
|
