摘要
提出了一种基于粗糙集和D-S(Dempster-Shafer)证据理论的云网络风险评估方法。该方法把云网络中针对虚拟机的网络攻击行为作为安全要素,首先,构建云网络风险系统,根据属性依赖度对云网络风险系统进行分解;其次,利用属性重要度对这些子风险系统进行约简;再次,利用粗糙集与D-S证据理论之间的联系,计算各个子风险系统的基本信任分配函数;最后,通过D-S证据理论的合成规则对多个证据进行合成,得到云网络所处安全状态的概率,从而评估云网络的风险。通过实例验证量化网络攻击行为对虚拟机层和物理机层的影响,结果表明,所提出的方法可以实现云网络风险评估。
A cloud network risk assessment method based on rough set theory and D-S(Dempster-Shafer)evidence theory is proposed.The method takes the attack behaviors of the virtual machine in the cloud network as the security factor.Firstly,construct a cloud network risk system and decompose the cloud network risk system according to the dependence of attributes.Then,reduce subsystems by using the importance of attributes.Based on the relationship between rough set theory and D-S evidence theory,can calculate the basic trust allocation function of each sub risk system.Through the synthesis rule of D-S evidence theory,the probability of the security state of the cloud network is obtained by synthesizing multiple evidences,so as to realize the risk assessment of cloud network.According to the example,quantitative network attacks affect the behavior of the virtual machine layer and the physical layer of the machine,can realize the cloud network risk assessment.
出处
《西安邮电大学学报》
2017年第6期104-110,共7页
Journal of Xi’an University of Posts and Telecommunications
基金
陕西省自然科学基础研究计划资助项目(2013JQ9007)
西安工程大学博士科研启动基金资助项目(BS1121)
