摘要
网络中层次化内部威胁态势评估能够有效地提高网络安全应急响应能力。针对当前内部威胁态势量化评估时,存在着评估所需时间过长、准确度较低、评估所需成本消耗过大等问题,提出基于最终权重值的威胁态势量化评估方法。根据理论知识对网络的内部结构进行建模,利用网络安全威胁程度传播概率的量化方法,获取各个网络节点的安全态势,利用权重计算方法,求出网络节点的权重值,通过灰色分类法将网络内部威胁按威胁程度划分为强度、中度、弱度3个等级,根据层次分析评价指标计算出网络内部中威胁权重值,根据各种威胁权重值加权得出最终权重值,以最终权重值计算结果完成评估。实验结果表明,所提出方法在网络中层次化内部威胁态势量化评估中评估所需时间较短、评估准确度较高,成本消耗较小。
In this article,a method to quantitatively evaluate threat situation based on the final weight value was presented.According to the theoretical knowledge,the internal structure of network was modeled.The quantification method of propagation probability of network security threat level was used to get the security situation of each network node.Moreover,the weight calculation method was used to calculate the weight value of network node.According to the threat level,the internal threat in network was divided into three levels by the gray classification method:strong level,medium level and weak level.According to the analytical hierarchy evaluation indicators,the threat weight values in network were calculated.Finally,various threat weight values were weighted to obtain the final weight value.The final calculation result of weight value was used to complete the evaluation.Simulation results show that the proposed method has shorter evaluation time,higher evaluation accuracy in the quantitative evaluation of hierarchical internal threat situation in network.What is more,the cost is low.
作者
苏庭波
SU Ting-bo(School of Computer Engineering,Shangqiu University,Shangqiu Henan 476113,China)
出处
《计算机仿真》
北大核心
2019年第4期265-268,共4页
Computer Simulation
关键词
网络中层次化
威胁态势
量化评估
Layering in network
Threat situation
Quantitative evaluation
