摘要
该文提出了一种针对主机安全性的量化融合模型.该模型基于规范的网络综合信息数据库,通过对目标主机安全信息的信任度融合及关联分析,利用相关数学模型对目标主机进行脆弱点存在可能性分析及脆弱点可利用性分析,在此基础上进一步评估出目标主机的总体安全性能.评估结果提供了直观的主机安全量化值,从而可以定量地分析主机的入侵可行性,也可以有针对性地进行主机脆弱性修补,增强其安全性能.
In the field of network security, the security performance assessment of target host and target network is the research highlight. This paper brings forward to a quantitative fusion model aimed at target host security. The model, based on standardized network comprehensive information database, performs credit fusion and relevancy analysis on the target host information, and analyzes the existent possibility as well as the exploitability of the target host vulnerability with the help of some relevant mathematics models, and then goes further to the assessment of the target host's general security. The assessments provide a distinct host security quantitative value, which makes it possible to analyze the intrusive possibility and to repair the vulnerability of the host so as to enhance its security.
出处
《计算机学报》
EI
CSCD
北大核心
2005年第5期914-920,共7页
Chinese Journal of Computers
关键词
量化融合模型
证据理论
层次分析法
Algorithms
Computer selection and evaluation
Database systems
Mathematical models
Matrix algebra
Security of data