检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
出 处:《指挥信息系统与技术》2015年第5期24-29,共6页Command Information System and Technology
基 金:国家"973"计划资助项目
摘 要:网络对抗试验因其过程快、交互强和安全隔离性高等特点,对网络安全能力测试评估提出了更高要求。提出了一种基于规则的网络攻击事件生成方法,为网络安全能力测试提供威胁驱动源。首先,从网络协议报头、攻击负载和交互行为统计3方面建立了攻击特征库,构造初始攻击报文;然后,建立了攻击特征变换规则,在不改变攻击能力前提下对初始攻击报文进行变换,生成网络攻击事件,以提高网络攻击模拟逼真度;最后,进行了某情报组网系统的威胁感知能力评估试验,验证了基于规则的网络攻击事件生成方法的有效性。The evaluation of the network security ability is required in fast confrontation of test process, strong interaction and highly security isolation. An attack event generation method based on the regulation is proposed to provide threat-driven source for network security ability experiment. Firstly, the attack behavior characteristic library is built from network protocol dat- agram, attack load and interactive behavior. Secondly, the initial attack packet is constructed based on behavior characteristics. Thirdly, the attack characteristic transformation rule is built to transform the initial attack packet without changing the attack ability for improving the simula- tion fidelity of the network combatant behavior. Finally, the threat sensing ability evaluation ex- periment is conducted in some area intelligence networking systems. Experimental results show that the method can efficiently support ability evaluation experiment.
关 键 词:网络攻击 攻击事件 攻击变换 规避检测 安全能力
分 类 号:TP309[自动化与计算机技术—计算机系统结构]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:3.17.141.114