检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
作 者:赵德胜 陈钦 张杰[3] ZHAO Desheng;CHEN Qin;ZHANG Jie(Unit 92932,PLA,Zhanjiang 524016,China;Unit 61623,PLA,Beijing 100842,China;The 54th Research Institute of CETC,Shijiazhuang,050081)
机构地区:[1]中国人民解放军92932部队,广东湛江524016 [2]中国人民解放军61623部队,北京100842 [3]中国电子科技集团公司第五十四研究所,河北石家庄050081
出 处:《计算机与网络》2021年第20期58-61,共4页Computer & Network
摘 要:从网络安全态势参数感知、安全态势参数分类和安全态势评估3个方面进行阐述,参数感知来源于网络设备和安全设备,通过Netflow协议和syslog协议获取流量信息和安全日志信息,通过主动上报、主动测量、被动测量、分析测量等多种手段获取多维度安全态势参数,参数分类分为安全态势参数及威胁攻击参数等。在此基础上建立安全态势评估指标体系,从脆弱性、容灾性、威胁性和稳定性等方面进行体系指标建立,给出详细的评估步骤。The situation awareness of network security parameters, the classification of network security parameters and the evaluation of network security are described. The awareness of parameters is obtained by the network equipment and security equipment. The information of traffic flow and security log is acquired through the protocol of NetFlow and syslog. The safety parameters are obtained through voluntary reporting, passive reporting, voluntary measuring, passive measuring and other means. The classification of the parameters is composed of network security, threat attack and other parameters. On this basis, the security situation assessment index system is established from the vulnerability, disaster tolerance, threat, stability and other aspects. Finally, the detailed evaluation steps are proposed.
分 类 号:TP393[自动化与计算机技术—计算机应用技术]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.3
