摘要
为解决因检测性漏洞而造成的网络安全风险问题,设计了基于关联规则的网络信息节点风险评估系统。参考RISRA体系的框架型结构,连接漏洞扫描模块与威胁评估模块,完成风险评估系统的硬件执行环境搭建。在此基础上,向应用网络中插入漏洞信息,搭建关联型数据库平台,稳定其中的所有待筛查评估节点,完成系统的软件执行环境连接,联合相关硬件设备,完成基于关联规则的网络信息节点风险评估系统设计。对比实验结果表明,与传统共享型信息评估系统相比,应用基于关联规则的风险评估系统,网络信息节点的检测容错率提升至90%,而数据共享时间却缩短至0.80 ms,可有效降低由检测性漏洞引发的信息安全风险。
In order to solve the problem of network security risk caused by detection vulnerabilities,a risk assessment system of network information nodes based on association rules is designed.Refer to the framework structure of RISRA system,connect vulnerability scanning module and threat assessment module,and complete the hardware execution environment of risk assessment system.On this basis,the vulnerability information is inserted into the application network,the associated database platform is built,all the nodes to be screened and evaluated are stabilized,the software execution environment of the system is connected,and the associated hardware equipment is combined to complete the risk assessment system design of the network information nodes based on the association rules.Compared with the traditional shared information evaluation system,the application of association rule-based risk evaluation system can improve the detection fault tolerance rate of network information nodes to 90%,while the data sharing time is shortened to 0.80 ms,which can effectively reduce the risk of information security caused by detection vulnerabilities.
作者
严智
YAN Zhi(Hubei Zhongyan Industry Co.,Ltd.,Wuhan 430000,China)
出处
《电子设计工程》
2021年第13期124-128,共5页
Electronic Design Engineering
基金
湖北省自然科学基金(61260953)。
关键词
关联规则
网络信息节点
RISRA框架
漏洞扫描
数据库平台
association rules
network information node
RISRA framework
vulnerability scanning
database platform
