| 主动网络安全风险管理系统 |
| |
| 引用本文: | 颉钰,李卫.主动网络安全风险管理系统[J].微电子学与计算机,2004,21(6):1-5,9. |
| |
| 作者姓名: | 颉钰 李卫 |
| |
| 作者单位: | 西安交通大学计算机科学与工程系,网络信息安全研究中心,陕西,西安,710049 |
| |
| 基金项目: | 国家自然科学基金重点项目(59937150),国家863计划项目(2001AA413910) |
| |
| 摘 要: | 针对日益严峻的网络安全威胁,文章从加强内部安全管理入手,依据BS7799信息安全管理体系标准的规范及指标,提出了一个主动网络安全风险管理系统。该系统利用信息侦察代理获得园区网的基本配置及漏洞信息,在此基础上建立潜在入侵事件扩散模型,分析模型并对网络所面临的安全风险进行定性和定量评估.最后根据评估结果执行相应的风险控制措施,使风险等级降低到可接受的水平。文章还介绍了主动安全风险管理系统的结构,入侵扩散模型以及风险评估算法的具体细节,实验结果表明该系统能够有效地协助管理员建立完善的安全风险管理体系.
|
| 关 键 词: | 网络安全 风险评估 入侵扩散模型 风险管理 BS7799 |
| 文章编号: | 1000-7180(2004)06-001-05 |
An Active Network Security Risk Management System |
| |
| XIE Yu,LI Wei.An Active Network Security Risk Management System[J].Microelectronics & Computer,2004,21(6):1-5,9. |
| |
| Authors: | XIE Yu LI Wei |
| |
| Abstract: | Network threats are more and more relentless. From the point of strengthening internal security management, an active network security risk management system (ANSRMS) complying with BS7799 is presented. ANSRMS uses information detecting agents to get configuration and vulnerabilities of the network, develops the spread model of underlying intrusion, provides qualitative and quantitive assessment of security risk, and finally adopts corresponding risk control policy to decrease the risk level. This paper introduces the details of the architecture of ANSRMS, spread model of intrusion and our risk assessment algorithm. The experiment results given shows that ANSRMS can efficiently help administrators to set up a completed security risk management framework. |
| |
| Keywords: | Network security Risk assessment Spread model of intrusion Risk management BS7799 |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
