摘要
为弥补目前网络脆弱性评估系统比较简单、评估结果不全面不准确的不足,提出一种基于脆弱点依赖图的网络脆弱性评估方法,并在该评估方法基础上开发出相应的评估系统.该方法吸收了通用弱点评价体系(CVSS)的优势,同时与目标网络的脆弱点依赖图很好地结合起来,可对网络脆弱性做出一个客观评价.在计算过程中,该方法将脆弱性可利用性和脆弱性影响分开计算,并与实际目标网络中的脆弱点依赖图相结合,从而使得计算值更有参考和实用价值.
To make up the deficiencies of the network vulnerability assessing system which was quite simple and had incomprehensive and inaccurate assessing result,a network vulnerability assessing method based on vulnerability dependence graph was presented,and the corresponding assessing system was developed.The method absorbs the superiority of common vulnerability scoring system(CVSS) and well combines with vulnerability dependence graph of goal network,which can make an impersonal and quantitative evaluation roundly for the network vulnerability.The method computes vulnerability,exploitability and vulnerability influence individually,and combines with actual goal network's vulnerability dependence graph,therefore the results have more important reference and practical value.
出处
《大连海事大学学报》
CAS
CSCD
北大核心
2010年第4期92-95,共4页
Journal of Dalian Maritime University
基金
国家高技术研究发展计划(863)资助项目(2009AA01Z432)
