|
|||||
|
|
| 基于隐马尔可夫模型的风险评估方法 | |
| 引用本文: | 黎筱彦,王清贤,杨林,朱云. 基于隐马尔可夫模型的风险评估方法[J]. 信息安全与通信保密, 2011, 9(12): 68-70 |
| 作者姓名: | 黎筱彦 王清贤 杨林 朱云 |
| 作者单位: | 1. 信息工程大学信息工程学院,河南郑州,450002 2. 中国电子系统工程研究所,北京,100141 3. 总参数据管理中心,北京,100100 |
| 摘 要: | 针对网络攻击场景下一段时间内信息系统面临的安全风险,文中提出一种基于隐马尔可夫模型的风险评估方法,将网络主机的漏洞建模为隐马尔可夫模型中的状态,将可能受到的攻击建模为隐马尔可夫模型中的观察值,求解一段时间内的成功攻击概率;根据攻击成功后产生的代价和成功攻击的概率,得到时间段内总风险度量值。该方法可从整体角度对网络攻击场景下一段时间内的信息安全风险进行量化评估。 |
| 关 键 词: | 风险评估 网络安全 隐马尔可夫模型 |
Risk Assessment Method based on Hidden Markov Model |
|
| LI Xiao-yan,,WANG Qing-xian,YANG Lin,ZHU Yun. Risk Assessment Method based on Hidden Markov Model[J]. China Information Security, 2011, 9(12): 68-70 | |
| Authors: | LI Xiao-yan WANG Qing-xian YANG Lin ZHU Yun |
| Affiliation: | LI Xiao-yan1,2,WANG Qing-xian1,YANG Lin2,ZHU Yun3(1School of Information Engineering,Information Engineering University,Zhengzhou Henan 450002,China,2Institute of China Electronic System Engineering,Beijing 100141,3General-Staff Data Management Center,Beijing 100100,China) |
| Abstract: | A new information security risk assessment method based on Hidden Markov Model (HMM) is proposed, thus to evaluate the overall security risk in a period. The vulnerabilities of network host are modeled as the state of HMM, and the probable attacks as the observed values, thus the probability of probable attacks in a period is obtained by HMM, and the overall risk value calculated according to the attack costs and the probabilities of probable attacks. The method is suitable for the risk assessment of information security in a period at the scene of network attack. |
| Keywords: | risk assessment network security Hidden Markov Model |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! | |