基于攻击路径图的威胁评估方法

Threat evaluation method based on attack-path graph

为解决复杂系统安全威胁评估问题,研究并建立了基于攻击路径图的系统安全威胁模型。该模型首先提出了漏洞利用可能性及利用结果的评估标准,进而在分析漏洞之间利用关系的基础上生成目标系统的攻击路径图,并以图论、概率论等理论作为基本方法对将复杂攻击路径分解为以串、并联形式为基本构成单元的简单路径,从而降低了安全威胁评估问题的规模和难度,实现了对漏洞威胁以及攻击路径威胁的量化评估。

In order to solve the problem of evaluation of system security threat in the complex information system, a system security threat model based on the attack-path graph was proposed. The model gives an evaluating standard of the possibility and harmful level of the vulnerability exploitation. Then an attack-path graph of the target system can be generated based on the exploitation relationship among vulnerabilities. Based on methods in the graph theory and probability theory, we can decompose the complicated attack-paths into several simple paths whose basal unit is series or parallel form. So, the dimensions and difficulty of evaluation of security threat is lowered greatly, and the quantitative evaluation to the threat of vulnerability and attack-path can be well done.