摘要
为了解决目前信息安全风险评估系统中存在的主观性强、静态评估等问题,该文提出了一种基于生物免疫学危险理论的信息安全风险评估模型DT-RA,采用危险信号触发机制,能够应对不断变化的信息系统和网络环境,然后给出了一种基于DT-RA模型的安全事件发生可能性风险的计算方法,最后根据国标计算得出整个信息系统的风险值。本文在假设一定资产规模的信息系统受到随时间变化的不同威胁级别攻击的情况下进行了仿真实验。实验结果表明:信息系统的风险值反映了攻击强度,分析了免疫措施的实施情况、受攻击资产数目等因素,风险值将表征信息安全风险评估系统为类似生物体免疫系统,系统随风险值逐渐衰减或采取系统级别免疫措施。DT-RA模型对评估信息系统的安全风险是有效、可行的,具有实时、定量、客观的优点,大量减少了对人工经验的依赖,具有实用意义。
Information security risk assessments,such as subjective and static assessments are improved by an information security risk assessment system based on Biological Immunology Danger Theory.The system uses the danger signal trigger mechanism to deal with mutated information systems and networks.This model is used to calculate the possibility of a security incident.The information system risk is then calculated according to the Chinese standard.Simulations with asset scale,attack priorities and changing attacks show the risk,the analysis immunity and the number of attacked assets.The information system risk is reduced and the system is protected from various attacks,which is similar to the Biological Immune System.The model effectively assesses information system security risks using real-time analyses which greatly reduce the dependence on artificial experience.
出处
《清华大学学报(自然科学版)》
EI
CAS
CSCD
北大核心
2011年第10期1231-1235,共5页
Journal of Tsinghua University(Science and Technology)
基金
国家航空科学基金资助项目(05F2037)
国防工业基础基金资助项目(Q072006C002-1)
关键词
风险评估
生物免疫
危险理论
信息安全
risk assessment
biological immunology
danger theory
information security