检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
作 者:胡尧 涂碧波 HU Yao;TU Bi-bo(School of Cyberspace Security,University of Chinese Academy of Sciences,Beijing 100085,China)
机构地区:[1]中国科学院大学计算机科学与技术学院,北京100085
出 处:《吉林大学学报(工学版)》2024年第12期3620-3625,共6页Journal of Jilin University:Engineering and Technology Edition
基 金:国家自然科学基金项目(2022ZYQ216)。
摘 要:为了减小高级持续性威胁(APT)攻击对网络造成的损失,提高网络运行的安全性,对网络中的访问展开控制,提出了APT攻击下多域互操作动态访问控制算法/。首先,基于Petri网构建APT攻击模型;其次,通过对APT攻击下网络中各域的信任经验、信任知识与信任推荐展开计算,获得各域的信任值;最后,基于域信任值计算域信任等级,根据等级分配给该域对应角色的访问权限,完成多域互操作动态访问控制。实验结果表明:该算法的控制效率高、控制性能好。In order to reduce the losses caused by APT attacks on the network and improve the security of network operation,it is necessary to control access in the network.A dynamic access control algorithm for multi domain interoperability under APT attacks is proposed.Firstly,an APT attack model is constructed based on Petri nets;Secondly,by calculating the trust experience,knowledge,and recommendations of each domain in the network under APT attacks,the trust values of each domain are obtained;Finally,the domain trust level is calculated based on the domain trust value,and the access permissions assigned to the corresponding roles in the domain according to the level are used to complete dynamic access control for multi domain interoperability.The experimental results show that the algorithm has high control efficiency and good control performance.
关 键 词:APT攻击 多域互操作 信任评价 基于角色的访问控制 动态访问
分 类 号:TP391[自动化与计算机技术—计算机应用技术]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:3.134.94.230