| 基于多阶段网络攻击的网络风险评估方法研究 |
| |
| 引用本文: | 邓新颖,杨庚,姚放吾,李晖.基于多阶段网络攻击的网络风险评估方法研究[J].计算机工程与应用,2006,42(18):133-135,203. |
| |
| 作者姓名: | 邓新颖 杨庚 姚放吾 李晖 |
| |
| 作者单位: | 南京邮电大学计算机科学与技术系,南京,210003 |
| |
| 基金项目: | 江苏省自然科学基金;南京邮电大学校科研和校改项目 |
| |
| 摘 要: | 由于黑客的频繁入侵,对网络信息系统进行风险评估显得日益重要。为了获得对网络系统更实际的风险评估结果,文中引入了一个新的概念:漏洞关联性(VulnerabilityCorrelation),从黑客展开对网络的多阶段攻击入手,利用各种扫描器对网络扫描的大量漏洞信息,构造漏洞关联库,形成多条网络攻击链,从而计算出网络的风险评估值。与其他评估方法相比,论文的方法能更好地体现在面临黑客攻击时网络所存在的风险。
|
| 关 键 词: | 网络风险评估 多阶段攻击 漏洞关联性 攻击链 风险值 |
| 文章编号: | 1002-8331-(2006)18-0133-03 |
| 收稿时间: | 2005-07 |
| 修稿时间: | 2005-07 |
A Network Risk Assessment Method Based on Multi-Stage Network Attack |
| |
| Deng Xinying,Yang Geng,Yao Fangwu,Li Hui.A Network Risk Assessment Method Based on Multi-Stage Network Attack[J].Computer Engineering and Applications,2006,42(18):133-135,203. |
| |
| Authors: | Deng Xinying Yang Geng Yao Fangwu Li Hui |
| |
| Affiliation: | Department of Computer Science and Technology,Nanjing University of Posts and Telecommunications,Nanjing 210003 |
| |
| Abstract: | Due to the frequently intrusion of hacker,it is increasingly important to do risk assessment for network information system.In order to achieve more actual risk assessment result for network system,a new idea of vulnerability correlation is introduced in this paper,which starts with the network muhi-stage attack launched by hacker,using a large of vulnerability information gotten from scanning network by any kinds of scanner,constructs network vulnerability correlation base and forms several network attack chains,thereby calculates network risk assessment value.Compared with other assessment methods,our approach can better reflects risk existing in network while facing the attack of the hacker. |
| |
| Keywords: | network risk assessment multi-stage attack vulnerability correlation attack chain risk value |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
