检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
作 者:王辉[1] 娄亚龙 戴田旺 茹鑫鑫 刘琨[1] WANG Hui;LOU Yalong;DAI Tianwang;RU Xinxin;LIU Kun(School of Computer Science and Technology,Henan Polytechnic University,Jiaozuo,Henan 454000,China)
机构地区:[1]河南理工大学计算机科学与技术学院
出 处:《计算机工程》2019年第9期128-135,142,共9页Computer Engineering
基 金:国家自然科学基金(61300216)
摘 要:为准确评估计算机网络的脆弱性,结合贝叶斯网络与攻击图提出一种新的评估算法。构建攻击图模型RSAG,在消除攻击图中环路的基础上,将模型转换成贝叶斯网络攻击图模型BNAG,引入节点攻击难度和节点状态变迁度量指标计算节点可达概率。实例分析结果表明,该算法对网络脆弱性的评估结果真实有效,能够体现每个节点被攻击的差异性,并且对于混合结构攻击图的计算量较少,可准确凸显混乱关系下漏洞的危害程度。In order to accurately evaluate the vulnerability of computer network,a new evaluation algorithm is proposed by combining Bayesian network with attack graph.An attack graph model is constructed,which is named RSAG.On the basis of eliminating the loop in the attack graph,the model is transformed into a Bayesian network attack graph model,which is named BNAG,and the node accessibility probability is calculated by introducing the node attack difficulty and node state transition measurement index.The analysis results of an example show that the evaluation results of network vulnerability by this algorithm are true and effective,which can fully reflect the difference between attacked node.Meanwhile,the calculation of attack graph with mixed structure is less,which can accurately highlight the harm degree of vulnerability in the chaotic relationship.
分 类 号:TP309[自动化与计算机技术—计算机系统结构]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.229
