| 一种基于攻击图的入侵响应方法 |
| |
| 引用本文: | 石 进,郭山清,陆 音,谢 立. 一种基于攻击图的入侵响应方法[J]. 软件学报, 2008, 19(10): 2746-2753 |
| |
| 作者姓名: | 石 进 郭山清 陆 音 谢 立 |
| |
| 作者单位: | 南京大学,计算机科学与技术系,江苏,南京,210093;山东大学,计算机科学与技术学院,山东,济南,250101 |
| |
| 基金项目: | 国家高技术研究发展计划(863计划),江苏省高技术研究发展计划项目 |
| |
| 摘 要: | 针对当前入侵响应工作中存在的不能充分考虑系统的收益,以及不能充分考虑攻击者策略变化因素等问题,提出了一种基于攻击图的入侵响应IRAG(intrusion response based on attack graph)模型.该模型较好地解决了攻击意图及策略变化的问题,并全面考虑了系统、攻击者的收益等因素.实验结果表明,IRAG模型有效地提高了响应的准确性和效果.
|
| 关 键 词: | 攻击图 信息安全 入侵响应 安全尺度 博弈理论 |
| 收稿时间: | 2007-07-30 |
| 修稿时间: | 2008-02-25 |
An Intrusion Response Method Based on Attack Graph |
| |
| SHI Jin,GUO Shan-Qing,LU Yin and XIE Li. An Intrusion Response Method Based on Attack Graph[J]. Journal of Software, 2008, 19(10): 2746-2753 |
| |
| Authors: | SHI Jin GUO Shan-Qing LU Yin XIE Li |
| |
| Abstract: | System incentive and alternation of attacker's strategies are not taken into full consideration in current intrusion response research.An intrusion response model(intrusion response based on attack graph,IRAG)based on the attack graph is proposed to solve this problem.IRAG model deals well with the attack's intent and alternation of strategies,and takes account of incentives of system and attacker across-the-board.The experimental results show that the IRAG model can effectively improve the accuracy and effectiveness of alert response. |
| |
| Keywords: | attack graph information security intrusion response security metric game theory |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《软件学报》浏览原始摘要信息 |
|
点击此处可从《软件学报》下载全文 |
|
