摘要
为降低攻击树模型在计算攻击事件实现概率时主观性因素对安全属性权值带来的影响,提出一种基于模糊层次分析法(FAHP)的攻击树模型。通过结合系统自身和叶节点攻击行为的特点,构造模糊一致判断矩阵确定叶节点各安全属性权值,计算攻击树叶节点实现概率。以民航机载娱乐系统为例,利用该方法计算出的攻击事件实现概率具有较高可信度,能够真实反映出系统风险点,对系统网络安保方案的制定提供参考。
To reduce the influence of subjective factors on the weight of security attributes when the attack tree model is used to calculate the probability of attack events,an attack tree model based on fuzzy analytic hierarchy process(FAHP)was proposed.By combining the characteristics of the system itself and the attack behavior of the leaf nodes,the fuzzy consistency judgment matrix was constructed to determine the weight of the security attributes of the leaf nodes,and the probability of the attack leaf nodes was calculated.Taking the civil inflight entertainment system as an example,the probability of the attack events calculated using the proposed method has high reliability,which can reflect the system risk point and provide reference for the development of the system network security scheme.
作者
吕宗平
戚威
顾兆军
LYU Zong-ping1,QI Wei1,2, GU Zhao-jun1,2(1. Information Security Evaluation Center, Civil Aviation University of China, Tianjin 300300, China;2. College of Computer Science and Technology, Civil Aviation University of China, Tianjin 300300, Chin)
出处
《计算机工程与设计》
北大核心
2018年第6期1501-1505,1515,共6页
Computer Engineering and Design
基金
国家自然科学基金项目(61601467
U1533104)
民航科技基金项目(MHRD20140205
MHRD20150233)
民航安全能力建设基金项目(PDSA008)
中央高校基本科研业务费中国民航大学专项基金项目(3122013Z008
3122013C004
3122015D025)
中国民航大学科研启动基金项目(2013QD24X)
关键词
风险分析
攻击树
模糊层次分析法
机载娱乐系统
网络安保
risk analysis
attack tree
fuzzy analytical hierarchy process
inflight entertainment
network security
