摘要
信息系统所面临的威胁复杂多变,具有很多不确定性因素。人们多用定性的自然语言对威胁因素进行评价,传统的分析方法存在着一定的局限性。提出了一种基于云模型信息系统威胁因素分析方法,应用云模型及不确定性推理,将威胁评价因子指标量化为可细微变化的不同分值,实现语言的定性概念与其定量之间的转换。在此基础上,结合关联分析法对威胁影响因素的权重进行挖掘,客观反映出其影响程度。最后通过实例分析,验证了该方法的有效性。
The threat of information estimate methods, for people usually system is complex and variable, and with many uncertain factors. There are some limits in the traditional describe the threat with qualitative linguistic words. A threat analysis method of information system based on cloud model is proposed in this paper. Mapping qualitative linguistic words of the threat estimate factors into a fine--changeable cloud drops and translating the uncertain factor conditions into quantitative values with the uncertain ilation based on the cloud model, and then, the weights of vulnerability factors are mined by combining with the correlation analysis method, and the effect degrees on vulnerability are reflected objectively. The vlidity of the method is proofed to be validated through an example analysis in this paper.
出处
《计算机安全》
2010年第4期4-6,共3页
Network & Computer Security
关键词
单规则生成器
云模型
威胁识别
关联度分析
single rule generator
cloud model
threat identification
correlation analysis