摘要
为了准确地评估网络安全风险,提高网络的整体安全性,提出了基于实时告警的层次化网络安全风险评估方法。提出了一种包含服务、主机和网络3级的网络分层风险评估模型。在此基础上以IDS(intrusion detection system)作为数据源,以威胁对象价值、脆弱性严重程度和威胁出现的频率作为核心变量,针对威胁攻击对象的不同进行分类计算,通过加权的方式计算网络各层的安全风险值。分别以实验室网络环境及校园网环境为实例,表明了该方法的准确性和有效性。
To exactly assess the security risk of a network and enhance the performance, a hierarchical risk assessment method for network security based on real-time warning is presented. Firstly, a hierarchical risk assessment model for computer net- works is developed. This model can provide three hierarchies: services, hosts and local networks. IDS (intrusion detection system) is as a data source. Then, the risk indexes of at service level, host level and local network level is calculated by weighting based on the value of threat object, attack frequency and vulnerability severity. Finally, the accuracy and validity of the proposed method are demonstrated by the experiments.
出处
《计算机工程与设计》
CSCD
北大核心
2013年第7期2315-2323,共9页
Computer Engineering and Design
基金
陕西省自然科学基金项目(2011JM8033)
关键词
网络安全
风险评估
实时告警
层次化模型
威胁
network security
risk assessment
real-time warning
hierarchical modell threat