入侵容忍系统的安全态势评估被引量：2

Security Situation Evaluation of Intrusion Tolerant System

下载PDF

导出

摘要根据入侵容忍系统与一般网络系统相比所具有的特点,提出了一种专门针对入侵容忍系统的安全态势评估方法.基于入侵对系统所造成的影响以及入侵容忍的功能,构建了数据机密度、数据完整度、服务可用度3个评估指标,并根据各指标的特点给出了其量化方法,然后通过对这3个指标的定量计算来动态评估入侵容忍系统的安全态势.实验表明,所提方法是一种便于操作的态势评估方法,所得到的安全态势能反映出入侵容忍系统的真实安全状况. According to the features of intrusion tolerant system compared to ordinary network system, an evaluating the security situation special for intrusion tolerant system is proposed. Three evaluation indexes are included： firstly, the confidentiality of data, the integrality of data and the usability of service are proposed based on the influence of intrusion and the function of intrusion tolerance. Secondly, the ways of quantifying the indexes are given according to the features of each index, and thirdly, the security situation of intrusion tolerant system is evaluated dynamically through computing the three evaluation indexes. Experiment shows that the method is easy to be operated, and reflects the actual security status of intrusion tolerant system.

作者秦华旺戴跃伟王执铨

机构地区南京理工大学自动化学院

出处《北京邮电大学学报》 EI CAS CSCD 北大核心 2009年第2期57-61,共5页 Journal of Beijing University of Posts and Telecommunications

基金国家自然科学基金项目(60374066)

关键词入侵容忍安全态势评估评估指标网络安全 intrusion tolerance security situation evaluation evaluation index network security

分类号 TP393 [自动化与计算机技术—计算机应用技术]

引文网络
相关文献

参考文献6

1Blyth A. Footprinting for intrusion detection and threat assessment [ J ]. Information Security Technical Report, 1999, 4(3): 43-53.
2胡威 Li Jianhua Chen Xiuzhen Jiang Xinghao Zuo Min.A scalable model for network situational awareness based on Endsley＇ s situation model[J].High Technology Letters,2007,13(4):395-401. 被引量：1
3Chen Xiuzhen, Zheng Qinghua, Guan Xiaohong, et al. Multiple behavior information fusion based quantitative threat evaluation[J]. Computers and Seeurity, 2005, 24 (3) : 218-231.
4Madan B B, Goseva P K, Vaidyanathan K, et al. A method for modeling and quantifying the security attributes of intrusion tolerant system [J]. Performance Evaluation, 2004, 56(4): 167-186.
5Stroud R, Welch I, Warne J, et al. A qualitative analysis of the intrusion-tolerance capabilities of the MAFTIA architecture[ C] /// International Conference on Dependable Systems and Networks. [S.l. ] : IEEE, 2004: 453-461.
6Algirdas A Z, Laprie J C, Randell B. Basic concepts and taxonomy of dependable and secure eomputing[J]. IEEE Transactions on Dependable and Secure Computing, 2004, 1 ( 1 ) : 11-33.

同被引文献24

1殷丽华,方滨兴.入侵容忍系统安全属性分析[J].计算机学报,2006,29(8):1505-1512. 被引量：27
2王良民,马建峰,王超.无线传感器网络拓扑的容错度与容侵度[J].电子学报,2006,34(8):1446-1451. 被引量：22
3Porras P A, Fong M W, Valdes A. A mission-impactbased approach to INFOSEC alarm correlation [ C ]// The Fifth International Symposium on Recent Advances in Intrusion Detection. Zurich, Switzerland, 2002 : 95 - 114.
4Si Jiaquan, Wang Kaizhuo, Wang Wei, et al. Study of index weight in network threat evaluation based on improved grey theory [ C ]//IEEE Pacific-Asia Workshop on Computational Intelligence and Industrial Application. Wuhan,China,2008 : 9 - 13.
5Lippmann Richard, Webster Seth, Stetson Douglas. The effect of identifying vulnerabilities and patching software on the utility of network intrusion detection[C]//The Fifth International Symposium on Recent Advances in Intrusion Detection. Zurich, Switzerland, 2002 : 307 - 326.
6Manganaris Stefanos, Christensen Marvin, Zerkle Dan, et al. A data mining analysis of RTID alarms[J].Computer Networks, 2000,34 ( 4 ) : 571 - 577.
7Martin Roesch, Chris Green. Snort users manual 2. 0. 0 [ EB/OL ]. ( 2004-08-02 ) [ 2005-02-01 ]. http ://www. snort, org/docs/snort_manual.
8Taylor Carol, Alves-Foss Jim. An empirical analysis of NATE--network analysis of anomalous traffic events [ C]//The Tenth New Security Paradigms Workshop, Virginia Beach, USA, 2002 : 18 - 26.
9Ortalo Rodolphe, Deswarte Yves, Kaaniche Mohamed. Experimenting with quantitative evaluation tools for monitoring operational security[J]. IEEE Transactions on Software Engineering, 1999,25 ( 5 ) : 633 - 651.
10MOHSEN R,MOHAMMADTAGHI H,VAHAB S M.Fault-tolerant and 3-dimensional distributed topology control algorithms in wireless multi-hop networks[J].Wireless Networks,2006,12:179-188.

引证文献2

1陈秀真,李建华,张少俊,范磊.面向安全态势的权限有效性定量评估方法[J].东南大学学报（自然科学版）,2009,39(4):742-746. 被引量：1
2熊书明,王良民,詹永照.基于SMP的无线传感器网络拓扑容侵定量评估[J].通信学报,2010,31(7):24-32. 被引量：6

二级引证文献7

1尹荣荣,刘浩然,杨绸绸,邓玉静.基于SMP的无线传感网自适应拓扑容错评估模型[J].仪器仪表学报,2016,37(2):404-411. 被引量：4
2沈士根,黄龙军,范恩,胡珂立,刘建华,曹奇英.受恶意程序传染的WSNs可生存性评估[J].传感技术学报,2016,29(7):1083-1089. 被引量：13
3宋全振,陈秀真,马进.基于粗糙集算法的DDoS攻击威胁评估[J].通信技术,2017,50(1):109-115.
4刘志锋,陈凯,李雷,周从华.一种多种攻击并发下的WSN生存性评估模型[J].计算机科学,2017,44(8):129-133. 被引量：1
5程红霞,谭新莲.多次重传的链状无线传感网络可靠性分析[J].计算机工程与应用,2018,54(5):79-84. 被引量：5
6李化邓,李雷,施化吉,周从华,王润宇.无线传感器网络的生存性评估[J].计算机应用研究,2018,35(8):2450-2453. 被引量：4
7苏玉泽,孟相如,康巧燕,韩晓阳.基于半马尔可夫过程的虚拟网络生存性模型[J].科学技术与工程,2019,19(24):260-267. 被引量：5

1高丽莎.企业员工如何守住数据安全[J].中国信息安全,2012(2):65-67.
2赵志安.教你制作可穿戴设备开源智能手环[J].无线电,2017,0(1):34-36.
3李茂宽,关键.基于模糊C均值的支持向量机数据分类识别[J].系统仿真学报,2005,17(7):1785-1787. 被引量：8
4羽飞.激烈竞争的高速数据机[J].新浪潮,1994(3):29-29.
5江华.实型数据的非比较分段排序算法[J].计算机应用与软件,2005,22(3):105-107. 被引量：5
6吴庆涛,刘彬,郑瑞娟,李冠峰.自律入侵容忍系统的可生存性评估[J].计算机工程,2012,38(5):114-116. 被引量：1
7英特尔助力中国企业把握大数据机遇[J].中国金融电脑,2012(8):93-93.
8邬贺铨.邬贺铨：挖掘大数据机遇助力轻工业发展[J].生活用纸,2014,0(15):31-31.
9程梦瑶.为“云”集成[J].软件和信息服务,2014(11):59-59.
10流行大风报 12款NOTEBOOK劲爆登场[J].大众科技,2002,0(1):26-29.

北京邮电大学学报

2009年第2期

浏览历史

内容加载中请稍等...

入侵容忍系统的安全态势评估被引量：2

参考文献6

同被引文献24

引证文献2

二级引证文献7

相关作者

相关机构

相关主题

浏览历史

入侵容忍系统的安全态势评估 被引量：2

参考文献6

同被引文献24

引证文献2

二级引证文献7

相关作者

相关机构

相关主题

浏览历史

入侵容忍系统的安全态势评估被引量：2