检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
作 者:陈玉枚 扈红超 王亚文 CHEN Yumei;HU Hongchao;WANG Yawen(Information Engineering University,Zhengzhou 450001,China)
机构地区:[1]信息工程大学,河南郑州450001
出 处:《信息工程大学学报》2023年第2期224-229,共6页Journal of Information Engineering University
基 金:国家重点研发计划资助项目(2021YFB1006200,2021YFB1006201);国家自然科学基金资助项目(62072467)。
摘 要:多变体系统被提出以从架构层面实现信息系统的高安全和高可靠,但其安全性受到严重挑战。针对此问题,本文基于通用漏洞评分系统(CVSS)提出系统漏洞风险评估模型,对基于K多数裁决的多变体系统进行攻击建模,基于漏洞风险以及攻击行为提出执行体动态切换算法。最后构建了一个典型的多变体系统来评估漏洞风险与系统安全的相关性,以及算法带来的安全增益。评估结果表明,漏洞风险与多变体系统安全呈负相关,且算法约提高了10%~67%的抗攻击能力,该算法能够有效提高系统的安全性。Multi-variant system is proposed to achieve high security and high reliability of information system from the architectural level.However,the security of multi-variant system has been severely challenged.For this problem,a vulnerability risk assessment model is proposed based on the Com-mon Vulnerability Scoring System(CVSS),a K-majority-based multi-variant system for attack mod-eling is proposed,and an executive dynamic switching algorithm is presented based on vulnerability risk and attack behavior.Finally,a typical multi-variant system is constructed to evaluate the corre-lation between vulnerability risk and system security,and the security gain brought by the algorithm.The evaluation results show that the vulnerability risk is negatively related to the security of the multi-variant system,and the algorithm improves the anti-attack ability by about 10%~67%,and the algorithm can effectively improve system security.
关 键 词:多变体系统 多样化 漏洞风险 动态切换 系统安全
分 类 号:TP311[自动化与计算机技术—计算机软件与理论]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:18.119.172.58