融合广义随机Petri网的二维拟态安全评估模型  被引量：5

作　　者：杨昕 李挥[1,2] 邬江兴 伊鹏[3] Xin YANG;Hui LI;Jiangxing WU;Peng YT(Shenzhen Graduate School,Peking University,Shenzhen 518055,China;Peng Cheng Laboratovy,Shenzhen 518055,China;National Digital Switching System Engineering and Technological Research and Development Center,Zhengzhou450002,China)

机构地区：[1]北京大学深圳研究生院,深圳518055 [2]鹏程实验室,深圳518055 [3]国家数字交换系统工程技术研究中心,郑州450002

出　　处：《中国科学：信息科学》2020年第12期1944-1960,共17页Scientia Sinica(Informationis)

基　　金：国家重点研发计划(批准号:2017YFB0803200);先进防御设备与系统研制(批准号:2017YFB0803204);鹏城实验室–大湾区未来网络试验与应用环境(批准号:LZC0019);国家自然科学基金创新研究群体项目(批准号:61521003);广东省重点领域研发计划(批准号:2019B010137001);深圳市科创委资助研究计划(批准号:JCYJ20190808155607340,JCYJ20170306092030521,JSGG20170824095858416)资助项目。

摘　　要：―为应对网络空间中的未知安全漏洞,拟态防御系统作为一种动态异构冗余的新型防御架构破茧而出.拟态系统根据网络环境自发进行重配置,扭转了传统静态网络攻防不对等的局面.然而目前仍缺乏有说服力的能够定量评估并比较不同的安全防御系统有效性的实用方案.本文深入研究拟态架构,提出了一种二维分析模型,该模型将系统配置细节计算为量化结果,以比较不同动态网络的可靠性,且该模型在不同网络配置间可保持良好的可扩展性.具体来说,在分析的第1维度即单节点攻击分析时,我们详细介绍了系统配置,使用广义随机Petri网模型对攻击者和防御者的行为分别进行描述建模,刻画其对系统状态的影响.结合泊松过程、常见漏洞和暴露以及常见漏洞评分系统,我们对其影响设计函数进行赋值、量化计算.在分析的第2个维度即链路攻击中,我们采用马尔可夫(Markov)链,并用鞅理论进行计算,量化表达了攻击难度即攻击得手时长和网络配置之间的关系.最后,给出日常防御下和攻击情景下的安全度量方案,验证了拟态防御的有效性,为拟态系统的设计提供了理论指导.Cyber mimic defenses have recently emerged as a dynamic heterogeneity redundancy architecture,which adjust the asymmetry between defenders and attackers by reconfiguring the system according to the networkscenario.Some studies have investigated the effectiveness of security models,however,there is still a lack ofconvincing and practical methods to assess CMD networks quantitatively.Thus,in this paper,we propose atwo-dimension model that calculates those details as a digital result to compare different CMD networks.Inaddition,the proposed method demonstrates good scalability in different networks.Specifically,in the firstdimension,i.e.,attacking a single node,we elaborate on system configurations and employ the GeneralizedStochastic Petri net model to capture the effectiveness of different behaviors from gamers.To quantify the impactsof those behaviors,we parameterized them using a Poisson process,common vulnerabilities and exposures,andthe common vulnerability scoring system.In the second dimension,we adopt Markov chains and the Martingaletheory to analyze the attack process along the attack chain.Finally,security metrics and countermeasures underdifferent scenarios are presented to verify the effectiveness of CMD,which provides some guidance for designingfuture systems with acceptable cost.

关 键 词：―拟态网络防御 广义随机 PETRI网络 通用漏洞评分系统 安全分析 安全模型 

分 类 号：TP393.08[自动化与计算机技术—计算机应用技术] TP301.1[自动化与计算机技术—计算机科学与技术]