摘要
指纹探测作为网络侦察的重要组成部分,是攻击者成功实施网络攻击的先决条件。针对攻防双方在指纹探测过程中的博弈对抗特征,设计了一种新型对抗攻击者指纹探测的欺骗机制,并通过建立不完全信息动态博弈模型有效刻画指纹探测欺骗过程,在此基础上讨论了欺骗指纹生成的基本方法。针对扩展指纹库规模导致的解空间爆炸问题,提出了一种基于遗传算法思想的智能指纹混淆算法,即两阶段最优策略选取算法(two-stage optimal strategy selection algorithm,TSOSA),并建立了仿真实验环境。结果表明,与传统的贪婪算法相比,TSOSA更加有效地隐藏了网络资产的真实指纹特征,降低了攻击者的成功探测概率,进而增强了网络的安全防护能力。
Fingerprint detection,as an important part of network reconnaissance,is a prerequisite of successful network attack.Aiming at the game confrontation characteristics of the attacker and defender in the fingerprint detection process,this paper designed a new deception mechanism to against the attacker’s fingerprint detection,established an incomplete information dynamic game model to describe the fingerprint detection deception process effectively,and discussed the basic method of deceptive fingerprint generation.Aiming at the problem of the explosion of solution space caused by the expansion of the fingerprint database,the paper proposed an intelligent fingerprint confuse algorithm based on genetic algorithm thought,two-stage optimal strategy selection algorithm.The simulation experiment shows that compared with the traditional greedy algorithm,TSOSA more effectively hides the real fingerprint characteristics of network assets,reduces the probability of successful detection of attac-kers,and enhances the security protection capabilities of the network.
作者
李少辉
张国敏
宋丽华
王秀磊
Li Shaohui;Zhang Guomin;Song Lihua;Wang Xiulei(Command&Control Engineering College,Army Engineering University of PLA,Nanjing 210007,China)
出处
《计算机应用研究》
CSCD
北大核心
2022年第4期1202-1206,共5页
Application Research of Computers
基金
江苏省自然科学青年基金资助项目。
关键词
指纹探测
欺骗防御
指纹混淆
智能博弈
fingerprint detection
deception defense
fingerprint confusion
intelligent game
