基于性能状态空间的卫星网络攻击图实现算法  

Realization algorithm of satellite network attack graph based on performance state space

在线阅读下载全文

作  者:赵毅寰[1,2] 王祖林[1] 许建忠[1] 郭旭静[1] 

机构地区:[1]北京航空航天大学电子信息工程学院,北京100191 [2]中国空空弹导研究院,河南洛阳471009

出  处:《沈阳工业大学学报》2011年第2期202-207,共6页Journal of Shenyang University of Technology

基  金:"十一五"国防预研基金资助项目(411010*****)

摘  要:针对已有的网络攻击图无法分析攻击行为对网络性能的影响、在卫星网络脆弱性分析方面应用受限等问题,提出了一种面向系统性能的攻击图实现方法.定义虚拟的性能节点(Virtual Performance Node,VPN)概念并以之为攻击图状态,将攻击者期望的系统性能损失作为攻击行为要达到的目标,把系统性能的变化抽象为性能状态空间的跃迁,并根据单步攻击的实现概率确定各个攻击路径的威胁程度.该方法不仅能描述攻击行为,还能从性能管理的角度反映出攻击可能达到的效果,使攻击图理论能够应用到卫星通信网络中.实验表明,改进的攻击图方案更符合人的认知习惯,能有效应用于卫星网络的脆弱性分析.For the problems that the existing networks attack graph can not analyze the effects of attack behavior on network performance and the application in the vulnerability analysis of satellite network is limited,a realization method of system performance-oriented attack graph was proposed.The Virtual Performance Node(VPN) was defined and taken as the attack graph state.The system performance loss expected by attacker was regarded as the objective of attack behavior,and the variation of system performance was Abstracted into the transition of performance state space.The threatening degree of each attack path was determined according to the realization probability of single step attack.This method can not only describe the attack behavior,but also reflect the attack effect in performance management view and ensure the application of attack graph theory in satellite communication network.The experimental results show that the improved attack graph scheme is more accord with the human cognitive habit and can be used in the vulnerability analysis of satellite network effectively.

关 键 词:卫星网络 网络安全 攻击图 状态空间 性能管理 攻击规则 攻击效果 脆弱性 

分 类 号:TP393[自动化与计算机技术—计算机应用技术]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象