摘要
提出了一种适用于大规模复杂网络系统的攻击图生成算法,从主机间可达性、安全防护系统、主机系统和网络服务四个层面对目标网络进行建模,提出了主机间可达性参数的自动获取技术,从而有效支持了大规模目标网络建模的自动化,通过实验分析证明,本算法能够适合全面分析网络安全性和攻击者可能采取的行为方式.
This paper proposes a kind of attack graph generation algorithm for large-scale complex network system. Model the target network in four levels: hosts' accessibility, security systems, host systems and network services, and propose an automatic gain technology for hosts' accessibility parameters. This algorithm supports effectively the modeling automatically of large-scale target network. From the experiment results we can see, this algorithm can satisfy analyzing network security and the action of attacker roundly.
出处
《微电子学与计算机》
CSCD
北大核心
2011年第4期13-17,共5页
Microelectronics & Computer
基金
国家"八六三"计划项目(2009AA01Z432)
